New in version 0.4.11
==============================
* Build fixes with cmake 2.8.10+
* Quick release without built binaries / files (Address Bug #184)
New in version 0.4.10
==============================
* Fix http chunk encoded PAC that was broken in previous release
* Add HTTP client unit test
* Fix more coding style issues
New in version 0.4.9
==============================
* CVE-2012-4504 Fixed buffer overflow when downloading PAC
* Fix infinit loop uppon network errors
New in version 0.4.8
==============================
* Only support standalone mozjs185 as mozilla js engine.
xulrunner being part of the now lightning fast moving firefox
is impossible to be tracked as a dependency and it is not
supported by Mozilla to be used in this scenario.
* Support building with javascritpcoregtk 1.5
(got split out of webkitgtk).
* Support sending multiple results.
* Issues fixed:
- #166: Libproxy does not parse NO_PROXY correct when the line
contains spaces
- #164: If gconf's value is an empty list, pxgconf will make
/usr/bin/proxy wait forever
- #60: use lib js for embedded solutions
- #160: strdup and gethostbyname not declared on OSX 10.7
- #168: .pc file should be installed under OSX as well.
- #170: Also check for "Transfer-Encoding: chunked".
- #171: mozjs pacrunner: Fix parameters of dnsResolve_()
- #172: Allow to forcibly build pacrunner as module (-DBIPR={ON,OFF})
- #173: Libproxy doesn't build with gcc 4.7
- #147: Use ${CMAKE_DL_LIBS} instead of assuming libdl is correct.
- #176: python bindings: guard the destructor.
- #177: Speed up importing of libproxy in python.
- #179: CMAKE 2.8.8 does not define PKG_CONFIG_FOUND
New in version 0.4.7
==============================
* Support/require xulrunner 2.0+
* Support linking againgst libwebkit-gtk3 (-DWITH_WEBKIT3=ON)
* Port to gsettings for gnome3. (-DWITH_GNOME3=ON[default])
* Issues closed:
- #149: always test for the right python noarch module path
- #155: Cannot compile with Firefox 4
- #156: libproxy should build against webkitgtk-3.0
- #158: Won't compile w/ xulrunner 2.0 final
- #159: libproxy fails with autoconfiguration "http://proxy.domain.com"
- #131: GSettings-based GNOME plugin
- #150: SUSE sysconfig/proxy config support
New in version 0.4.6
==============================
* Fixed a crash in the URL parser
* Fixed build issues with Visual Studio
* Updated the INSTALL file
* Install Python binding in prefix path if site-packages exists
* Fixed compilation with Visual Studio
New in version 0.4.5
===============================
* C# bindings are installable (-DWITH_DOTNET=ON)
* C# bindings installation path can be changed using -DGAC_DIR=
* Internal libmodman build fixed
* Installation dirs are now all relative to CMAKE_INSTALL_PREFIX
* Fixed test while using --as-needed linker flag
* Fixed generation of libproxy-1.0.pc
* Basic support for Mingw added (not yet 100% functional)
* Ruby binding implemented (not yet in the build system)
* Fixed modules not being found caused by relative LIBEXEC_INSTALL_DIR
* Fixed bug with builtin plugins (Issue 133)
* Vala bindings installation path can be changed using -DVAPI_DIR=
* Python bindings installation path can be changed using -DPYTHON_SITEPKG_DIR=
* Perl bindings can be installed in vendor directory (-DPERL_VENDORARCH=ON)
* Perl bindings installation path can be change using -DPX_PERL_ARCH=
* Unit test now builds on OSX
New in version 0.4.4
===============================
* Add support for optionally building using a system libmodman
* Rework build system to be cleaner
* Fix two major build system bugs: 127, 128
New in version 0.4.3
===============================
* Test can now be out-compiled using BUILD_TESTING=OFF
* Fixed python binding not handling NULL pointer
* Pyhton binding now support Python version 3
* Rewrote URL parser to comply with unit test
* Username and password are now URL encoded
* Scheme comparison is now non-case sensitive
* Fixed deadlock using WebKit has PAC runner
* Fixed OS X compilation of Perl bindings
New in version 0.4.2
===============================
* Fixed python binding that failed on missing px_free symbole
* Workaround cmake bug with dynamic libraries in non-standard folders
New in version 0.4.1
===============================
* Perl bindings have been integrated into the CMake Build System
* Vala bindings are installed if -DWITH_VALA=yes is passed to cmake
* All extensions can be disabled using WITH_*=OFF cmake options
* socks5:// and socks4:// can now be returned
* Many bugfixes
New in version 0.4.0
===============================
* C++ rewrite
* Small API change (px_proxy_factory_get_proxy() can now return NULL)
* SOVERSION bump
* libmodman is now a seperate library
* Migrate to cmake
* Windows support (config_w32reg, ignore_hostname; VC++ support)
* MacOSX support (config_macosx, ignore_hostname)
* Built-in modules support
* Support for chunked encoding
* Move to hidden visibility by default
* KDE's KConfig symantics are fully supported
* Removeal of all PX_* env variables (no longer needed)
* Symbol based detection of relevant pacrunner
* Reworked config_gnome to not suck (its *much* faster)
* Many other things I can't remember
* Use common files for www/firefox.
SeaMonkey-specific changes
Basic Private Browsing support has been added (experimental for now).
Added support for safe browsing which blocks potentially malicious websites reported as attack sites (malware) or web forgeries (phishing).
Information like preview text, subject and sender can be shown in new mail notifications now.
See the changes page for minor changes.
Mozilla platform changes
CSS -moz-user-select:none selection has been changed to improve compatibility with -webkit-user-select:none (bug 816298).
Applied graphics-related performance improvements (bug 809821).
Removed E4X support from SpiderMonkey.
Added support for the <main> element.
Implemented scoped stylesheets.
Fixed some function keys not working when pressed (bug 833719).
Fixed several stability issues.
* Remove reference to devel/xulrunner.
* Move some common files for firefox/xulrunner-21.0.
* Move patches from devel/sulrunner.
* Take MAINTAINERship.
Upstream changes:
MediaWiki 1.20.6 [edit]
This is a security and maintenance release of the MediaWiki 1.20 branch.
Changes since 1.20.5 [edit]
(bug 48306) SECURITY: Run file validation checks on chunked uploads, and chunks of upload, during the upload process.
(bug 44327) mediawiki.user: Use session ID instead of 1-year cross-session cookies
(bug 47202) wikibits: FF2Fixes.css should not be loaded in Firefox 20.
(bug 31044) Make ResourceLoader behave in read-only mode
1.0.6
=====
* Model views now support default sorting order
* Model type/column formatters now accept additional view parameter
* is_visible for administrative views
* Model views have after_model_change method that can be overridden
* In model views, get_query was split into get_count_query and get_query
* Bootstrap 2.3.1
* Bulk deletes go through delete_model
* Flask-Admin no longer uses floating navigation bar
* Translations: French, Persian (Farsi), Chinese (Simplified/Traditional),
Chech
* Bug fixes
This version include a new album interface display mode named list-view.
Icon view can be switched to a flat item list, where items can be sorted
by properties columns as in a simple file manager. Columns can be
customized to show file, image, metadata, or digiKam properties.
Changelog:
Tomcat 7.0.40 Released 2013-05-09
The Apache Tomcat Project is proud to announce the release of version 7.0.40 of Apache Tomcat. This release contains a security fix and a number of bug fixes and improvements compared to version 7.0.39. The notable changes include:
A fix for CVE-2013-2071 (bug 54178) an information disclosure issue.
Various fixes to stop Tomcat attempting to parse text that looks like an EL expression in a JSP document as an EL expression when EL expressions are either not permitted or not enabled.
Improved handling and reporting if a ConcurrentModificationException occurs while checking for memory leaks when a web application is being stopped.
* This release of firefox is built with internal xulrunner.
Because separated (system) xulrunner has prefs and chrome load problem.
* gnome option is broken in libnkmozgnomevfs.so build.
Changelog:
NEW
The Social API now supports multiple providers
NEW
Enhanced three-state UI for Do Not Track (DNT)
NEW
Firefox will suggest how to improve your application startup time if needed
NEW
Preliminary implementation of Firefox Health Report
CHANGED
Ability to restore removed thumbnails on New Tab Page
CHANGED
CSS -moz-user-select:none selection changed to improve compatibility with -webkit-user-select:none (bug 816298)
CHANGED
Graphics related performance improvements (bug 809821)
CHANGED
Removed E4X support from Spidermonkey
DEVELOPER
Implemented Remote Profiling
DEVELOPER
Integrated add-on SDK loader and API libraries into Firefox
HTML5
Added support for <main> element
HTML5
Implemented scoped stylesheets
HTML5
Added support for window.crypto.getRandomValues
FIXED
Some function keys may not work when pressed (833719)
FIXED
Browsing and Download history clearing needs unification to avoid confusion on clearing download history (847627)
FIXED
21.0: Security fixes can be found here
Fixed in Firefox 21
MFSA 2013-48 Memory corruption found using Address Sanitizer
MFSA 2013-47 Uninitialized functions in DOMSVGZoomEvent
MFSA 2013-46 Use-after-free with video and onresize event
MFSA 2013-45 Mozilla Updater fails to update some Windows Registry entries
MFSA 2013-44 Local privilege escalation through Mozilla Maintenance Service
MFSA 2013-43 File input control has access to full path
MFSA 2013-42 Privileged access for content level constructor
MFSA 2013-41 Miscellaneous memory safety hazards (rv:21.0 / rv:17.0.6)
* Fix test suite to not fail when XML::Twig is not installed. Closes:
#707436
* theme: Now <TMPL_IF THEME_$NAME> can be used in all templates
when a theme is enabled.
* notifyemail: Fix bug that caused duplicate emails to be sent when
site was rebuilt.
* bzr: bzr rm no longer has a --force option, remove
Important: Session fixation CVE-2013-2067
FORM authentication associates the most recent request requiring
authentication with the current session. By repeatedly sending
a request for an authenticated resource while the victim is
completing the login form, an attacker could inject a request
that would be executed using the victim's credentials.
Note that the option to change session ID on authentication was
added in Tomcat 6.0.21. In earlier 6.0.x releases, prevention of
session fixation was an application responsibility.
This vulnerability represents a bug in Tomcat's session fixation
protection that was added in 6.0.21. Hence, only versions 6.0.21
onwards are listed as vulnerable.
This was fixed in revision 1417891.
This issue was identified by the Tomcat security team on
15 Oct 2012 and made public on 10 May 2013.
Affects: 6.0.21-6.0.36
Important: Denial of service CVE-2012-3544
When processing a request submitted using the chunked transfer
encoding, Tomcat ignored but did not limit any extensions that
were included. This allows a client to perform a limited DOS
by streaming an unlimited amount of data to the server.
This was fixed in revision 1476592.
This issue was reported to the Tomcat security team on
10 November 2011 and made public on 10 May 2013.
Affects: 6.0.0-6.0.36
ChangeLog:
++++++++++
Catalina
fix 52055: Ensure that filters are recycled. (markt/kkolinko)
fix 52184: Reduce log level for invalid cookies. (markt)
fix 53481: Added support for SSLHonorCipherOrder to allow the
server to impose its cipher order on the client. Based on
a patch provided by Marcel Šebek. (schultz)
fix 54044: Correct bug in timestamp cache used by logging
(including the access log valve) that meant entries could
be made with an earlier timestamp than the true timestamp. (markt)
fix In FormAuthenticator: If it is configured to change
Session IDs, do the change before displaying the login
form. (kkolinko)
fix 54054: Do not share shell environment variables between
multiple instances of the CGI servlet. (markt)
fix 54087: Correctly handle (ignore) invalid If-Modified-Since
header rather than throwing an exception. (markt/kkolinko)
fix 54220: Ensure the ErrorReportValve only generates an error
report if the error flag on the response has been set. (markt)
fix Fix memory leak of servlet instances when running with
a SecurityManager and either init() or destroy() methods
fail or the servlet is a SingleThreadModel one, and of
filter instances if their destroy() method fails with an
Error. (kkolinko)
fix 54382: Fix NPE when SSI processing is enabled and an empty
SSI directive is present. (markt)
fix 54483: Correct one of the Spanish translations. Based on
a suggestion from adinamita. (kkolinko)
update 54527: Synchronize conf/web.xml mime mapping with Tomcat 7. (markt)
Coyote
fix 54248: Ensure that byte order marks are swallowed when
using a Reader to read a request body with a BOM for those
encodings that require byte order marks. (markt)
fix 54324: Allow APR connector to disable TLS compression
if OpenSSL supports it. (schultz)
fix 54456: Ensure that if a client aborts a request when
sending a chunked request body that this is communicated
correctly to the client reading the request body. (markt)
update Update the native component of the APR/native connector
to 1.1.27 and make that version the recommended minimum
version. (kkolinko)
Jasper
fix 54615: Tomcat 6 doesn't build against ecj 4.x (kkolinko)
Cluster
fix 54045: Make sure getMembers() returns available member
when TcpFailureDetector works in static cluster. (kfujino)
Web applications
update 22278: Add a commented out sample configuration of
RemoteAddrValve to META-INF/context.xml files of the
Manager and Host Manager applications. (kkolinko)
fix 54080: Clarify documentation for initial value of
internalProxies attribute of RemoteIpValve. (schultz/kkolinko)
fix 54198: Clarify that HttpServletResponse.sendError(int)
results in an HTML response by default. (markt)
fix 54207: Correct JNDI factory package name in Javadoc for
org.apache.naming.java.javaURLContextFactory. (markt)
Other
update Add sample Apache Commons Daemon JSVC wrapper script
bin/daemon.sh that can be used with /etc/init.d. (kkolinko)
update In the build configuration: introduce property
"tomcat.output" that is used to specify location of the
build output directory. This simplifies configuration if
someone wants to move the output directory elsewhere
(e.g. out of the source tree). (kkolinko)
fix 54390: Use 'java_home' on Mac OS X to auto-detect
JAVA_HOME. (schultz)
update 54601: Change catalina.sh to consistently use
LOGGING_MANAGER variable to configure logging, instead
of modifying JAVA_OPTS one. (kkolinko)
update 54890: Update to Apache Commons Daemon 1.0.15. (mturk)
This is TPYO3 6.0 based stable release which support PHP 5.4.
TYPO3 is a free Open Source content management system for enterprise
purposes on the web and in intranets. It offers full flexibility and
extendability while featuring an accomplished set of ready-made
interfaces, functions and modules.
This broke packages that needed a target Python at build-time.
Instead, change it from defined/undefined to yes/no/tool. Most cases
of defined used `yes' anyway; fix the few stragglers do that instead.
New case `tool' is for TOOL_DEPENDS rather than buildlink3.
Version 1.0.4
-------------
Released April 28, 2013
- Add widgets and field implementations for HTML5 specialty input types.
- ext.appengine: Add NDB support.
- Add translations: Korean, Traditional Chinese
* Allow dots in directive parameter names. (tango)
* Add missing plugin section, and deal with missing sections with a warning.
* Detect plugins with a broken getsetup and warn.
* map: Correct reversion introduced in version 3.20110225 that could
generate invalid html. (smcv)
* Makefile.PL: overwrite theme style.css instead of appending
(Thanks, Mikko Rapeli)
* meta: Fix anchors used to link to the page's license and copyright.
Closes: #706437
Upstream changes:
MediaWiki 1.20.5 [edit]
This is a security and maintenance release of the MediaWiki 1.20 branch.
Changes since 1.20.4 [edit]
(bug 46590) Add hook AbortChangePassword to Special:ChangePassword
(bug 47304) SECURITY: Check SVG xml encoding against whitelist
Localisation updates from http://translatewiki.net.
mwdocgen.php: Implement --version option.
Remove svnstat stuff used in Doxygen generation
(bug 43594) Correctly supress warnings that were missed after the upstream
PHP change to E_STRICT being included in E_ALL.
jshint: Allow global mw to be set in mediawiki.js
Add test target
Upstream changes:
3.0.1
Apr 8, 2013
The interface of tornado.auth.FacebookGraphMixin is now consistent with its documentation and the rest of the module. The get_authenticated_user and facebook_request methods return a Future and the callback argument is optional.
The tornado.testing.gen_test decorator will no longer be recognized as a (broken) test by nose.
Work around a bug in Ubuntu 13.04 betas involving an incomplete backport of the ssl.match_hostname function.
tornado.websocket.websocket_connect now fails cleanly when it attempts to connect to a non-websocket url.
tornado.testing.LogTrapTestCase once again works with byte strings on Python 2.
The request attribute of tornado.httpclient.HTTPResponse is now always an ~tornado.httpclient.HTTPRequest, never a _RequestProxy.
Exceptions raised by the tornado.gen module now have better messages when tuples are used as callback keys.
3.0.0
Mar 29, 2013
Highlights
The callback argument to many asynchronous methods is now optional, and these methods return a .Future. The tornado.gen module now understands Futures, and these methods can be used directly without a .gen.Task wrapper.
New function .IOLoop.current returns the .IOLoop that is running on the current thread (as opposed to .IOLoop.instance, which returns a specific thread's (usually the main thread's) IOLoop.
New class tornado.netutil.Resolver provides an asynchronous interface to DNS resolution. The default implementation is still blocking, but non-blocking implementations are available using one of three optional dependencies: ~tornado.netutil.ThreadedResolver using the concurrent.futures thread pool, tornado.platform.caresresolver.CaresResolver using the pycares library, or tornado.platform.twisted.TwistedResolver using twisted
Tornado's logging is now less noisy, and it no longer goes directly to the root logger, allowing for finer-grained configuration.
New class tornado.process.Subprocess wraps subprocess.Popen with .PipeIOStream access to the child's file descriptors.
.IOLoop now has a static configure <.Configurable.configure> method like the one on .AsyncHTTPClient, which can be used to select an .IOLoop implementation other than the default.
.IOLoop can now optionally use a monotonic clock if available (see below for more details).
Backwards-incompatible changes
Python 2.5 is no longer supported. Python 3 is now supported in a single codebase instead of using 2to3
The tornado.database module has been removed. It is now available as a separate package, torndb
Functions that take an io_loop parameter now default to .IOLoop.current() instead of .IOLoop.instance().
Empty HTTP request arguments are no longer ignored. This applies to HTTPRequest.arguments and RequestHandler.get_argument[s] in WSGI and non-WSGI modes.
On Python 3, tornado.escape.json_encode no longer accepts byte strings.
On Python 3, the get_authenticated_user methods in tornado.auth now return character strings instead of byte strings.
tornado.netutil.TCPServer has moved to its own module, tornado.tcpserver.
The Tornado test suite now requires unittest2 when run on Python 2.6.
tornado.options.options is no longer a subclass of dict; attribute-style access is now required.
Detailed changes by module
Multiple modules
Tornado no longer logs to the root logger. Details on the new logging scheme can be found under the tornado.log module. Note that in some cases this will require that you add an explicit logging configuration in order to see any output (perhaps just calling logging.basicConfig()), although both .IOLoop.start() and tornado.options.parse_command_line will do this for you.
On python 3.2+, methods that take an ssl_options argument (on .SSLIOStream, .TCPServer, and .HTTPServer) now accept either a dictionary of options or an ssl.SSLContext object.
New optional dependency on concurrent.futures to provide better support for working with threads. concurrent.futures is in the standard library for Python 3.2+, and can be installed on older versions with pip install futures.
tornado.autoreload
tornado.autoreload is now more reliable when there are errors at import time.
Calling tornado.autoreload.start (or creating an .Application with debug=True) twice on the same .IOLoop now does nothing (instead of creating multiple periodic callbacks). Starting autoreload on more than one .IOLoop in the same process now logs a warning.
Scripts run by autoreload no longer inherit __future__ imports used by Tornado.
tornado.auth
On Python 3, the get_authenticated_user method family now returns character strings instead of byte strings.
Asynchronous methods defined in tornado.auth now return a .Future, and their callback argument is optional. The Future interface is preferred as it offers better error handling (the previous interface just logged a warning and returned None).
The tornado.auth mixin classes now define a method get_auth_http_client, which can be overridden to use a non-default .AsyncHTTPClient instance (e.g. to use a different .IOLoop)
Subclasses of .OAuthMixin are encouraged to override .OAuthMixin._oauth_get_user_future instead of _oauth_get_user, although both methods are still supported.
tornado.concurrent
New module tornado.concurrent contains code to support working with concurrent.futures, or to emulate future-based interface when that module is not available.
tornado.curl_httpclient
Preliminary support for tornado.curl_httpclient on Python 3. The latest official release of pycurl only supports Python 2, but Ubuntu has a port available in 12.10 (apt-get install python3-pycurl). This port currently has bugs that prevent it from handling arbitrary binary data but it should work for textual (utf8) resources.
Fix a crash with libcurl 7.29.0 if a curl object is created and closed without being used.
tornado.escape
On Python 3, ~tornado.escape.json_encode no longer accepts byte strings. This mirrors the behavior of the underlying json module. Python 2 behavior is unchanged but should be faster.
tornado.gen
New decorator @gen.coroutine is available as an alternative to @gen.engine. It automatically returns a .Future, and within the function instead of calling a callback you return a value with raise gen.Return(value) (or simply return value in Python 3.3).
Generators may now yield .Future objects.
Callbacks produced by .gen.Callback and .gen.Task are now automatically stack-context-wrapped, to minimize the risk of context leaks when used with asynchronous functions that don't do their own wrapping.
Fixed a memory leak involving generators, .RequestHandler.flush, and clients closing connections while output is being written.
Yielding a large list no longer has quadratic performance.
tornado.httpclient
.AsyncHTTPClient.fetch now returns a .Future and its callback argument is optional. When the future interface is used, any error will be raised automatically, as if .HTTPResponse.rethrow was called.
.AsyncHTTPClient.configure and all .AsyncHTTPClient constructors now take a defaults keyword argument. This argument should be a dictionary, and its values will be used in place of corresponding attributes of ~tornado.httpclient.HTTPRequest that are not set.
All unset attributes of tornado.httpclient.HTTPRequest are now None. The default values of some attributes (connect_timeout, request_timeout, follow_redirects, max_redirects, use_gzip, proxy_password, allow_nonstandard_methods, and validate_cert have been moved from ~tornado.httpclient.HTTPRequest to the client implementations.
The max_clients argument to .AsyncHTTPClient is now a keyword-only argument.
Keyword arguments to .AsyncHTTPClient.configure are no longer used when instantiating an implementation subclass directly.
Secondary .AsyncHTTPClient callbacks (streaming_callback, header_callback, and prepare_curl_callback) now respect .StackContext.
tornado.httpserver
.HTTPServer no longer logs an error when it is unable to read a second request from an HTTP 1.1 keep-alive connection.
.HTTPServer now takes a protocol keyword argument which can be set to https if the server is behind an SSL-decoding proxy that does not set any supported X-headers.
tornado.httpserver.HTTPConnection now has a set_close_callback method that should be used instead of reaching into its stream attribute.
Empty HTTP request arguments are no longer ignored. This applies to HTTPRequest.arguments and RequestHandler.get_argument[s] in WSGI and non-WSGI modes.
tornado.ioloop
New function .IOLoop.current returns the IOLoop that is running on the current thread (as opposed to .IOLoop.instance, which returns a specific thread's (usually the main thread's) IOLoop).
New method .IOLoop.add_future to run a callback on the IOLoop when an asynchronous .Future finishes.
.IOLoop now has a static configure <.Configurable.configure> method like the one on .AsyncHTTPClient, which can be used to select an .IOLoop implementation other than the default.
The .IOLoop poller implementations (select, epoll, kqueue) are now available as distinct subclasses of .IOLoop. Instantiating .IOLoop will continue to automatically choose the best available implementation.
The .IOLoop constructor has a new keyword argument time_func, which can be used to set the time function used when scheduling callbacks. This is most useful with the time.monotonic function, introduced in Python 3.3 and backported to older versions via the monotime module. Using a monotonic clock here avoids problems when the system clock is changed.
New function .IOLoop.time returns the current time according to the IOLoop. To use the new monotonic clock functionality, all calls to .IOLoop.add_timeout must be either pass a datetime.timedelta or a time relative to .IOLoop.time, not time.time. (time.time will continue to work only as long as the IOLoop's time_func argument is not used).
New convenience method .IOLoop.run_sync can be used to start an IOLoop just long enough to run a single coroutine.
New method .IOLoop.add_callback_from_signal is safe to use in a signal handler (the regular .add_callback method may deadlock).
.IOLoop now uses signal.set_wakeup_fd where available (Python 2.6+ on Unix) to avoid a race condition that could result in Python signal handlers being delayed.
Method IOLoop.running() has been removed.
.IOLoop has been refactored to better support subclassing.
.IOLoop.add_callback and .add_callback_from_signal now take *args, **kwargs to pass along to the callback.
tornado.iostream
.IOStream.connect now has an optional server_hostname argument which will be used for SSL certificate validation when applicable. Additionally, when supported (on Python 3.2+), this hostname will be sent via SNI (and this is supported by tornado.simple_httpclient)
Much of .IOStream has been refactored into a separate class .BaseIOStream.
New class tornado.iostream.PipeIOStream provides the IOStream interface on pipe file descriptors.
.IOStream now raises a new exception tornado.iostream.StreamClosedError when you attempt to read or write after the stream has been closed (by either side).
.IOStream now simply closes the connection when it gets an ECONNRESET error, rather than logging it as an error.
IOStream.error no longer picks up unrelated exceptions.
.BaseIOStream.close now has an exc_info argument (similar to the one used in the logging module) that can be used to set the stream's error attribute when closing it.
.BaseIOStream.read_until_close now works correctly when it is called while there is buffered data.
Fixed a major performance regression when run on PyPy (introduced in Tornado 2.3).
tornado.log
New module containing .enable_pretty_logging and .LogFormatter, moved from the options module.
.LogFormatter now handles non-ascii data in messages and tracebacks better.
tornado.netutil
New class tornado.netutil.Resolver provides an asynchronous interface to DNS resolution. The default implementation is still blocking, but non-blocking implementations are available using one of three optional dependencies: ~tornado.netutil.ThreadedResolver using the concurrent.futures thread pool, tornado.platform.caresresolver.CaresResolver using the pycares library, or tornado.platform.twisted.TwistedResolver using twisted
New function tornado.netutil.is_valid_ip returns true if a given string is a valid IP (v4 or v6) address.
tornado.netutil.bind_sockets has a new flags argument that can be used to pass additional flags to getaddrinfo.
tornado.netutil.bind_sockets no longer sets AI_ADDRCONFIG; this will cause it to bind to both ipv4 and ipv6 more often than before.
tornado.netutil.bind_sockets now works when Python was compiled with --disable-ipv6 but IPv6 DNS resolution is available on the system.
tornado.netutil.TCPServer has moved to its own module, tornado.tcpserver.
tornado.options
The class underlying the functions in tornado.options is now public (tornado.options.OptionParser). This can be used to create multiple independent option sets, such as for subcommands.
tornado.options.parse_config_file now configures logging automatically by default, in the same way that ~tornado.options.parse_command_line does.
New function tornado.options.add_parse_callback schedules a callback to be run after the command line or config file has been parsed. The keyword argument final=False can be used on either parsing function to supress these callbacks.
tornado.options.define now takes a callback argument. This callback will be run with the new value whenever the option is changed. This is especially useful for options that set other options, such as by reading from a config file.
tornado.options.parse_command_line --help output now goes to stderr rather than stdout.
tornado.options.options is no longer a subclass of dict; attribute-style access is now required.
tornado.options.options (and .OptionParser instances generally) now have a .mockable() method that returns a wrapper object compatible with mock.patch <unittest.mock.patch>.
Function tornado.options.enable_pretty_logging has been moved to the tornado.log module.
tornado.platform.caresresolver
New module containing an asynchronous implementation of the .Resolver interface, using the pycares library.
tornado.platform.twisted
New class tornado.platform.twisted.TwistedIOLoop allows Tornado code to be run on the Twisted reactor (as opposed to the existing .TornadoReactor, which bridges the gap in the other direction).
New class tornado.platform.twisted.TwistedResolver is an asynchronous implementation of the .Resolver interface.
tornado.process
New class tornado.process.Subprocess wraps subprocess.Popen with .PipeIOStream access to the child's file descriptors.
tornado.simple_httpclient
SimpleAsyncHTTPClient now takes a resolver keyword argument (which may be passed to either the constructor or configure <.Configurable.configure>), to allow it to use the new non-blocking tornado.netutil.Resolver.
When following redirects, SimpleAsyncHTTPClient now treats a 302 response code the same as a 303. This is contrary to the HTTP spec but consistent with all browsers and other major HTTP clients (including CurlAsyncHTTPClient).
The behavior of header_callback with SimpleAsyncHTTPClient has changed and is now the same as that of CurlAsyncHTTPClient. The header callback now receives the first line of the response (e.g. HTTP/1.0 200 OK) and the final empty line.
tornado.simple_httpclient now accepts responses with a 304 status code that include a Content-Length header.
Fixed a bug in which SimpleAsyncHTTPClient callbacks were being run in the client's stack_context.
tornado.stack_context
.stack_context.wrap now runs the wrapped callback in a more consistent environment by recreating contexts even if they already exist on the stack.
Fixed a bug in which stack contexts could leak from one callback chain to another.
Yield statements inside a with statement can cause stack contexts to become inconsistent; an exception will now be raised when this case is detected.
tornado.template
Errors while rendering templates no longer log the generated code, since the enhanced stack traces (from version 2.1) should make this unnecessary.
The {% apply %} directive now works properly with functions that return both unicode strings and byte strings (previously only byte strings were supported).
Code in templates is no longer affected by Tornado's __future__ imports (which previously included absolute_import and division).
tornado.testing
New function tornado.testing.bind_unused_port both chooses a port and binds a socket to it, so there is no risk of another process using the same port. get_unused_port is now deprecated.
New decorator tornado.testing.gen_test can be used to allow for yielding tornado.gen objects in tests, as an alternative to the stop and wait methods of .AsyncTestCase.
tornado.testing.AsyncTestCase and friends now extend unittest2.TestCase when it is available (and continue to use the standard unittest module when unittest2 is not available)
tornado.testing.ExpectLog can be used as a finer-grained alternative to tornado.testing.LogTrapTestCase
The command-line interface to tornado.testing.main now supports additional arguments from the underlying unittest module: verbose, quiet, failfast, catch, buffer.
The deprecated --autoreload option of tornado.testing.main has been removed. Use python -m tornado.autoreload as a prefix command instead.
The --httpclient option of tornado.testing.main has been moved to tornado.test.runtests so as not to pollute the application option namespace. The tornado.options module's new callback support now makes it easy to add options from a wrapper script instead of putting all possible options in tornado.testing.main.
.AsyncHTTPTestCase no longer calls .AsyncHTTPClient.close for tests that use the singleton .IOLoop.instance.
.LogTrapTestCase no longer fails when run in unknown logging configurations. This allows tests to be run under nose, which does its own log buffering (.LogTrapTestCase doesn't do anything useful in this case, but at least it doesn't break things any more).
tornado.util
tornado.util.b (which was only intended for internal use) is gone.
tornado.web
.RequestHandler.set_header now overwrites previous header values case-insensitively.
tornado.web.RequestHandler has new attributes path_args and path_kwargs, which contain the positional and keyword arguments that are passed to the get/post/etc method. These attributes are set before those methods are called, so they are available during prepare()
tornado.web.ErrorHandler no longer requires XSRF tokens on POST requests, so posts to an unknown url will always return 404 instead of complaining about XSRF tokens.
Several methods related to HTTP status codes now take a reason keyword argument to specify an alternate "reason" string (i.e. the "Not Found" in "HTTP/1.1 404 Not Found"). It is now possible to set status codes other than those defined in the spec, as long as a reason string is given.
The Date HTTP header is now set by default on all responses.
Etag/If-None-Match requests now work with .StaticFileHandler.
.StaticFileHandler no longer sets Cache-Control: public unnecessarily.
When gzip is enabled in a tornado.web.Application, appropriate Vary: Accept-Encoding headers are now sent.
It is no longer necessary to pass all handlers for a host in a single .Application.add_handlers call. Now the request will be matched against the handlers for any host_pattern that includes the request's Host header.
tornado.websocket
Client-side WebSocket support is now available: tornado.websocket.websocket_connect
.WebSocketHandler has new methods ~.WebSocketHandler.ping and ~.WebSocketHandler.on_pong to send pings to the browser (not supported on the draft76 protocol)
Oops, I thought the previous build passed.
It was missing a directory creation and it needs to specifically
pull in ldap and ssl buildlinks for those options, as well as
update the link parameters. Ride on the revbump from a few minutes ago.
1) Removed backup master site which is going away
2) Fixed ldap linkage problem
3) Removed two demos that don't build
4) Added three demos conditional on ssl/ldap (ssl demos was always built
before but would have failed if aws wasn't built with ssl)
* Convert MASTER_SITES to http site from https site.
Changelog:
0.6 (2013-01-28)
----------------
* Added ``required`` attribute to ``Meta`` to be able to specify which
settings are required to be set.
* Moved to Travis for the tests: http://travis-ci.org/jezdez/django-appconf
* Stopped support for Django 1.2.X.
* Introduced support for Python >= 3.2.
* USE_I18N=False fixed
* some frontend css stuff fixed
* check_copy_relations fixed for abstract classes
* non public frontend languages fixed
Changes 2.4.0:
* Compatibility with Django 1.4 and 1.5 (1.3 support dropped)
* Support for Python 2.5 dropped
* CMS_MAX_PAGE_PUBLISH_REVERSIONS has been added
* Reversion integration has changed to limit DB size
* CMS_LANGUAGE setting has changed
* CMS_HIDE_UNTRANSLATED setting removed
* CMS_LANGUAGE_FALLBACK setting removed
* CMS_LANGUAGE_CONF setting removed
* CMS_SITE_LANGUAGES setting removed
* CMS_FRONTEND_LANGUAGES setting removed
* MultilingualMiddleware has been removed
* CMS_FLAT_URLS has been removed
* CMS_MODERATOR has been removed and replaced with simple publisher.
* PlaceholderAdmin has now language tabs and has support for django-hvad
* Added `cms.middleware.language.LanguageCookieMiddleware`
* Added CMS_RAW_ID_USERS
Changelog:
There have been multiple improvements in the bytes to/from characters conversion process. The core conversion process has been refactored to use the NIO APIs. This has resulted in a number of improvements including invalid UTF-8 byte sequences at the end of a series of bytes now trigger a conversion error rather than being silently swallowed. Errors detected in request URIs will be replaced with the replacement character (allowing the application to respond to the invalid URI as it wishes) and errors in request bodies will trigger an IOException. The use of the JVM provided UTF-8 decoder has been replaced by a better UTF-8 decoder derived from Apache Harmony. This improved decoder has earlier detection of error conditions and more closely follows the Unicode specification regarding the use of replacement characters.
The annotation scanning process now provides more information if the scan fails due to broken class dependencies. There is now enough information to identify the class(es) at fault. The JAR scanning process that supports annotation scanning has also seen multiple improvements and fixes including the exclusion by default of the Bootstrap class path from the scan.
Upgraded a number of Tomcat's dependencies including Commons Daemon to 1.0.14, Commons IO to 2.4 and Commons FileUpload to r1458500. A new dependency on Commons Codec was added to replace Tomcat's internal Base64 encoder/decoder.
version are:
. SPDY protocol support
. WebSocket connections
. OCSP Stapling
. gunzip module
. flood prevention through rejection codes
Full changelog:
Changes with nginx 1.4.0 24 Apr 2013
*) Bugfix: nginx could not be built with the ngx_http_perl_module if the
--with-openssl option was used; the bug had appeared in 1.3.16.
*) Bugfix: in a request body handling in the ngx_http_perl_module; the
bug had appeared in 1.3.9.
Changes with nginx 1.3.16 16 Apr 2013
*) Bugfix: a segmentation fault might occur in a worker process if
subrequests were used; the bug had appeared in 1.3.9.
*) Bugfix: the "tcp_nodelay" directive caused an error if a WebSocket
connection was proxied into a unix domain socket.
*) Bugfix: the $upstream_response_length variable has an incorrect value
"0" if buffering was not used.
Thanks to Piotr Sikora.
*) Bugfix: in the eventport and /dev/poll methods.
Changes with nginx 1.3.15 26 Mar 2013
*) Change: opening and closing a connection without sending any data in
it is no longer logged to access_log with error code 400.
*) Feature: the ngx_http_spdy_module.
Thanks to Automattic for sponsoring this work.
*) Feature: the "limit_req_status" and "limit_conn_status" directives.
Thanks to Nick Marden.
*) Feature: the "image_filter_interlace" directive.
Thanks to Ian Babrou.
*) Feature: $connections_waiting variable in the
ngx_http_stub_status_module.
*) Feature: the mail proxy module now supports IPv6 backends.
*) Bugfix: request body might be transmitted incorrectly when retrying a
request to the next upstream server; the bug had appeared in 1.3.9.
Thanks to Piotr Sikora.
*) Bugfix: in the "client_body_in_file_only" directive; the bug had
appeared in 1.3.9.
*) Bugfix: responses might hang if subrequests were used and a DNS error
happened during subrequest processing.
Thanks to Lanshun Zhou.
*) Bugfix: in backend usage accounting.
Changes with nginx 1.3.14 05 Mar 2013
*) Feature: $connections_active, $connections_reading, and
$connections_writing variables in the ngx_http_stub_status_module.
*) Feature: support of WebSocket connections in the
ngx_http_uwsgi_module and ngx_http_scgi_module.
*) Bugfix: in virtual servers handling with SNI.
*) Bugfix: new sessions were not always stored if the "ssl_session_cache
shared" directive was used and there was no free space in shared
memory.
Thanks to Piotr Sikora.
*) Bugfix: multiple X-Forwarded-For headers were handled incorrectly.
Thanks to Neal Poole for sponsoring this work.
*) Bugfix: in the ngx_http_mp4_module.
Thanks to Gernot Vormayr.
Changes with nginx 1.3.13 19 Feb 2013
*) Change: a compiler with name "cc" is now used by default.
*) Feature: support for proxying of WebSocket connections.
Thanks to Apcera and CloudBees for sponsoring this work.
*) Feature: the "auth_basic_user_file" directive supports "{SHA}"
password encryption method.
Thanks to Louis Opter.
Changes with nginx 1.3.12 05 Feb 2013
*) Feature: variables support in the "proxy_bind", "fastcgi_bind",
"memcached_bind", "scgi_bind", and "uwsgi_bind" directives.
*) Feature: the $pipe, $request_length, $time_iso8601, and $time_local
variables can now be used not only in the "log_format" directive.
Thanks to Kiril Kalchev.
*) Feature: IPv6 support in the ngx_http_geoip_module.
Thanks to Gregor Kali¨nik.
*) Bugfix: in the "proxy_method" directive.
*) Bugfix: a segmentation fault might occur in a worker process if
resolver was used with the poll method.
*) Bugfix: nginx might hog CPU during SSL handshake with a backend if
the select, poll, or /dev/poll methods were used.
*) Bugfix: the "[crit] SSL_write() failed (SSL:)" error.
*) Bugfix: in the "client_body_in_file_only" directive; the bug had
appeared in 1.3.9.
*) Bugfix: in the "fastcgi_keep_conn" directive.
Changes with nginx 1.3.11 10 Jan 2013
*) Bugfix: a segmentation fault might occur if logging was used; the bug
had appeared in 1.3.10.
*) Bugfix: the "proxy_pass" directive did not work with IP addresses
without port specified; the bug had appeared in 1.3.10.
*) Bugfix: a segmentation fault occurred on start or during
reconfiguration if the "keepalive" directive was specified more than
once in a single upstream block.
*) Bugfix: parameter "default" of the "geo" directive did not set
default value for IPv6 addresses.
Changes with nginx 1.3.10 25 Dec 2012
*) Change: domain names specified in configuration file are now resolved
to IPv6 addresses as well as IPv4 ones.
*) Change: now if the "include" directive with mask is used on Unix
systems, included files are sorted in alphabetical order.
*) Change: the "add_header" directive adds headers to 201 responses.
*) Feature: the "geo" directive now supports IPv6 addresses in CIDR
notation.
*) Feature: the "flush" and "gzip" parameters of the "access_log"
directive.
*) Feature: variables support in the "auth_basic" directive.
*) Bugfix: nginx could not be built with the ngx_http_perl_module in
some cases.
*) Bugfix: a segmentation fault might occur in a worker process if the
ngx_http_xslt_module was used.
*) Bugfix: nginx could not be built on MacOSX in some cases.
Thanks to Piotr Sikora.
*) Bugfix: the "limit_rate" directive with high rates might result in
truncated responses on 32-bit platforms.
Thanks to Alexey Antropov.
*) Bugfix: a segmentation fault might occur in a worker process if the
"if" directive was used.
Thanks to Piotr Sikora.
*) Bugfix: a "100 Continue" response was issued with "413 Request Entity
Too Large" responses.
*) Bugfix: the "image_filter", "image_filter_jpeg_quality" and
"image_filter_sharpen" directives might be inherited incorrectly.
Thanks to Ian Babrou.
*) Bugfix: "crypt_r() failed" errors might appear if the "auth_basic"
directive was used on Linux.
*) Bugfix: in backup servers handling.
Thanks to Thomas Chen.
*) Bugfix: proxied HEAD requests might return incorrect response if the
"gzip" directive was used.
Changes with nginx 1.3.9 27 Nov 2012
*) Feature: support for chunked transfer encoding while reading client
request body.
*) Feature: the $request_time and $msec variables can now be used not
only in the "log_format" directive.
*) Bugfix: cache manager and cache loader processes might not be able to
start if more than 512 listen sockets were used.
*) Bugfix: in the ngx_http_dav_module.
Changes with nginx 1.3.8 30 Oct 2012
*) Feature: the "optional_no_ca" parameter of the "ssl_verify_client"
directive.
Thanks to Mike Kazantsev and Eric O'Connor.
*) Feature: the $bytes_sent, $connection, and $connection_requests
variables can now be used not only in the "log_format" directive.
Thanks to Benjamin Grössing.
*) Feature: the "auto" parameter of the "worker_processes" directive.
*) Bugfix: "cache file ... has md5 collision" alert.
*) Bugfix: in the ngx_http_gunzip_filter_module.
*) Bugfix: in the "ssl_stapling" directive.
Changes with nginx 1.3.7 02 Oct 2012
*) Feature: OCSP stapling support.
Thanks to Comodo, DigiCert and GlobalSign for sponsoring this work.
*) Feature: the "ssl_trusted_certificate" directive.
*) Feature: resolver now randomly rotates addresses returned from cache.
Thanks to Anton Jouline.
*) Bugfix: OpenSSL 0.9.7 compatibility.
Changes with nginx 1.3.6 12 Sep 2012
*) Feature: the ngx_http_gunzip_filter_module.
*) Feature: the "memcached_gzip_flag" directive.
*) Feature: the "always" parameter of the "gzip_static" directive.
*) Bugfix: in the "limit_req" directive; the bug had appeared in 1.1.14.
Thanks to Charles Chen.
*) Bugfix: nginx could not be built by gcc 4.7 with -O2 optimization if
the --with-ipv6 option was used.
Changes with nginx 1.3.5 21 Aug 2012
*) Change: the ngx_http_mp4_module module no longer skips tracks in
formats other than H.264 and AAC.
*) Bugfix: a segmentation fault might occur in a worker process if the
"map" directive was used with variables as values.
*) Bugfix: a segmentation fault might occur in a worker process if the
"geo" directive was used with the "ranges" parameter but without the
"default" parameter; the bug had appeared in 0.8.43.
Thanks to Zhen Chen and Weibin Yao.
*) Bugfix: in the -p command-line parameter handling.
*) Bugfix: in the mail proxy server.
*) Bugfix: of minor potential bugs.
Thanks to Coverity.
*) Bugfix: nginx/Windows could not be built with Visual Studio 2005
Express.
Thanks to HAYASHI Kentaro.
Changes with nginx 1.3.4 31 Jul 2012
*) Change: the "ipv6only" parameter is now turned on by default for
listening IPv6 sockets.
*) Feature: the Clang compiler support.
*) Bugfix: extra listening sockets might be created.
Thanks to Roman Odaisky.
*) Bugfix: nginx/Windows might hog CPU if a worker process failed to
start.
Thanks to Ricardo Villalobos Guevara.
*) Bugfix: the "proxy_pass_header", "fastcgi_pass_header",
"scgi_pass_header", "uwsgi_pass_header", "proxy_hide_header",
"fastcgi_hide_header", "scgi_hide_header", and "uwsgi_hide_header"
directives might be inherited incorrectly.
Changes with nginx 1.3.3 10 Jul 2012
*) Feature: entity tags support and the "etag" directive.
*) Bugfix: trailing dot in a source value was not ignored if the "map"
directive was used with the "hostnames" parameter.
*) Bugfix: incorrect location might be used to process a request if a
URI was changed via a "rewrite" directive before an internal redirect
to a named location.
Changes with nginx 1.3.2 26 Jun 2012
*) Change: the "single" parameter of the "keepalive" directive is now
ignored.
*) Change: SSL compression is now disabled when using all versions of
OpenSSL, including ones prior to 1.0.0.
*) Feature: it is now possible to use the "ip_hash" directive to balance
IPv6 clients.
*) Feature: the $status variable can now be used not only in the
"log_format" directive.
*) Bugfix: a segmentation fault might occur in a worker process on
shutdown if the "resolver" directive was used.
*) Bugfix: a segmentation fault might occur in a worker process if the
ngx_http_mp4_module was used.
*) Bugfix: in the ngx_http_mp4_module.
*) Bugfix: a segmentation fault might occur in a worker process if
conflicting wildcard server names were used.
*) Bugfix: nginx might be terminated abnormally on a SIGBUS signal on
ARM platform.
*) Bugfix: an alert "sendmsg() failed (9: Bad file number)" on HP-UX
while reconfiguration.
Changes with nginx 1.3.1 05 Jun 2012
*) Security: now nginx/Windows ignores trailing dot in URI path
component, and does not allow URIs with ":$" in it.
Thanks to Vladimir Kochetkov, Positive Research Center.
*) Feature: the "proxy_pass", "fastcgi_pass", "scgi_pass", "uwsgi_pass"
directives, and the "server" directive inside the "upstream" block,
now support IPv6 addresses.
*) Feature: the "resolver" directive now supports IPv6 addresses and an
optional port specification.
*) Feature: the "least_conn" directive inside the "upstream" block.
*) Feature: it is now possible to specify a weight for servers while
using the "ip_hash" directive.
*) Bugfix: a segmentation fault might occur in a worker process if the
"image_filter" directive was used; the bug had appeared in 1.3.0.
*) Bugfix: nginx could not be built with ngx_cpp_test_module; the bug
had appeared in 1.1.12.
*) Bugfix: access to variables from SSI and embedded perl module might
not work after reconfiguration.
Thanks to Yichun Zhang.
*) Bugfix: in the ngx_http_xslt_filter_module.
Thanks to Kuramoto Eiji.
*) Bugfix: memory leak if $geoip_org variable was used.
Thanks to Denis F. Latypoff.
*) Bugfix: in the "proxy_cookie_domain" and "proxy_cookie_path"
directives.
Changes with nginx 1.3.0 15 May 2012
*) Feature: the "debug_connection" directive now supports IPv6 addresses
and the "unix:" parameter.
*) Feature: the "set_real_ip_from" directive and the "proxy" parameter
of the "geo" directive now support IPv6 addresses.
*) Feature: the "real_ip_recursive", "geoip_proxy", and
"geoip_proxy_recursive" directives.
*) Feature: the "proxy_recursive" parameter of the "geo" directive.
*) Bugfix: a segmentation fault might occur in a worker process if the
"resolver" directive was used.
*) Bugfix: a segmentation fault might occur in a worker process if the
"fastcgi_pass", "scgi_pass", or "uwsgi_pass" directives were used and
backend returned incorrect response.
*) Bugfix: a segmentation fault might occur in a worker process if the
"rewrite" directive was used and new request arguments in a
replacement used variables.
*) Bugfix: nginx might hog CPU if the open file resource limit was
reached.
*) Bugfix: nginx might loop infinitely over backends if the
"proxy_next_upstream" directive with the "http_404" parameter was
used and there were backup servers specified in an upstream block.
*) Bugfix: adding the "down" parameter of the "server" directive might
cause unneeded client redistribution among backend servers if the
"ip_hash" directive was used.
*) Bugfix: socket leak.
Thanks to Yichun Zhang.
*) Bugfix: in the ngx_http_fastcgi_module.
Plack::Middleware::Test::StashWarnings is a Plack middleware
component to record warnings generated by your application so that
you can test them to make sure your application complains about
the right things.
Changelog:
0.18
- change threshold for combining headers and body from 1024 bytes to 8192
0.17_01
- reduce rt_sig* syscalls (kazeburo)
0.16
- Set REMOTE_PORT environment variable (kazeburo)
0.15
- unbundle Plack::Standalone::Server::Prefork::Server::Starter (see `perldoc Starlet` to find out how to boot Starlet using Server::Starter)
Changelog:
0.05 Mon Oct 22 2012
Resources: Preserve the media attribute when inlining CSS
Resources: Avoid uninitialized warnings by checking the attributes we expect
Changelog:
1.44 Sat Jun 30 20:32:04 CDT 2012
------------------------------------
There is no new functionality in this release.
[FIXES]
Fixed test failures on Win32. Thanks, Jerry Gay.
1.42 Thu May 31 11:35:26 CDT 2012
------------------------------------
If you want to use the autolint functionality, you'll have to have
HTML::Lint 2.20.
[FIXES]
Custom lint objects don't get reset before they get used, making
autolint with a custom lint object practically useless.
https://github.com/petdance/test-www-mechanize/issues/25
1.40 Fri Apr 13 15:14:39 CDT 2012
------------------------------------
[ENHANCEMENTS]
Added a $mech->autolint() method so you can turn autolinting on and off
in mid-program. Thanks, Mike O'Regan.
New functions $mech->scrape_text_by_id() and $mech->scrape_text_by_attr()
let you extract text from your pages. Convenience function
$mech->scraped_id_is() makes it easy to scrape and compare in one
function.
<h1 id="pagetitle">My Awesome Page!</h1>
# Verify that HTML is there with:
$mech->scraped_id_is( 'pagetitle', 'My Awesome Page!' );
[FIXES]
$mech->has_tag() now handles nested tags more sensibly. This fixes
Google Code ticket #1.
[INTERNALS]
Explicitly requires Test::Simple 0.94 or higher.
Brought over t/TestServer.pm from WWW::Mechanize which fixes a number
of problems.
Changelog:
_______________________________________________________________________________
2013-03-11 Release 6.05
Karen Etheridge (3):
Derive message from status code if it was not provided
Merge pull request #33 from tomhukins/fix-readme
fix typo in comment
Ville Skyttä (3):
Spelling fixes.
Spelling fix.
Merge pull request #34 from berekuk/fix-github-path
Gisle Aas (3):
Update repo URL
With Net::HTTP 6.04 we don't need our own can_read() and sysread override
$ENV{HTTP_PROXY} might override our test setup [RT#81381]
Vyacheslav Matyukhin (1):
fix github url in perldoc
Slaven Rezic (1):
* Pod is utf-8
Peter Rabbitson (1):
Match required perl in Makefile.PL
Tom Hukins (1):
Fix Github URLs
Multiple crasher bugs in streaming and the regular expression code have been fixed
Better handling of timeouts
Minor performance optimisations
The ban lurker now works correctly again
ESI and compression would sometimes deliver garbled data, this has been fixed
* Fix MESSAGE based on wen@'s patch
Remove duplicated arguments, fix MySQL version.
Changelog:
Version 5.0.5 April 19th 2013
Fix navigation hover effect
Fix database migration
Add a warning in the logfile when doing a migration
Fix renaming of shared files
Improved quota calculation
Fix free space calculation
Several layout fixes
Better save mode check
Cleanup database after user deletion
Fix touch for creating new files
Several trash bin fixes
Update MediaElement.js
Fix double address book problem
Fix layout problem triggered by impress
Several smaller fixes
Security: XSS in flashmediaelement.swf (oC-SA-2013-017)
Security: Authentication bypass in Contacts (oC-SA-2013-018)
Version 5.0.4 April 11th 2013
Fix file renames
Improved compatibility with PostgreSQL
Fixed upgrade for PostgreSQL users
Improved LDAP compatibility
Fix the upgrade hint
Make upgrade more robust fix maintainance mode
Smaller CSS fixes
Fix internet check for proxy users
Manually disable files_archive app to fix upgrade
Fix touch() for local storage
Fix versioning check to allow installation of 3rd party apps
Fix default quota
Several contacts fixes
Several calendar fixes
Fixed ampache support in media player
Improve mail function in antivirus app
Fix setting of user quotas
Fix deleted files size calculation
Fix “You do not have write permissions here” warning
Fix asynchronous loading of users
Fix notice from the nullbyte check
XSS vulnerability in jPlayer (oC-SA-2013-014)
PostgreSQL: Insecure database password generator (oC-SA-2013-015)
Windows: Local file disclosure (oC-SA-2013-016)
Version 5.0.3 April 3th 2013
Correctly handle .part files
Improve PostgreSQL support
Fix database upgrading from old versions
Improved app styles
Version 5.0.2 April 2th 2013
Fix versioning string
Fix compatibility with older MySQL versions
Version 5.0.1 April 2th 2013
Fixed classnames and improved autoloaded to improve compatibility with older PHP versions
Show a warning if an insecure PHP version is used
Filesizes are displayed correctly
Fixed groups in usermanagement
Several Internet Explorer fixes
Use display-names in more places
Fix upgrading of cache
Fix navigation scrollbar for lots of apps
Fixed ETag handling to prevent wrong conflict files
Fix public link handling
Better indexes to improve performance
Several Windows server fixes
Fix renames of shared files
Fix PostgreSQL compatibility
Improve error reporting for app installation
Improved compatibility with Novell eDirectory
Several LDAP fixes
Improved sorting in usermanagement
Improved background jobs
Several CardDAV contacts fixes
Several mediaplayer fixes
Fixes for text editor
Several lucene search fixes
Several smaller fixes
Contacts: SQL Injection (oC-SA-2013-012)
Multiple XSS vulnerabilities (oC-SA-2013-011)
Changes from previous:
_______________________________________________________________________________
2013-03-10 Net-HTTP 6.06
Jesse Luehrs (1):
IO::Socket::SSL doesn't play well with select() [RT#81237]
_______________________________________________________________________________
2012-11-10 Net-HTTP 6.05
Gisle Aas (1):
Convert to Test::More style and disable test on Windows [RT#81090]
Marinos Yannikos (1):
SSL broken for some servers [RT#81073]
_______________________________________________________________________________
2012-11-08 Net-HTTP 6.04
Gisle Aas (3):
Simpler handling of double chunked [RT#77240]
Check for timeouts before reading [RT#72676]
Fake can_read
Dagfinn Ilmari Mannsåker (1):
Fix chunked decoding on temporary read error [RT#74431]
Eric Wong (1):
NB: set http_bytes if read_entity_body hits EAGAIN on first read
Jay Hannah (1):
chunked,chunked is invalid, but happens. :( Ignore all but the first. [RT#77240]
*) Bugfix: a segmentation fault might occur in a worker process if
subrequests were used; the bug had appeared in 1.3.9.
*) Bugfix: the "tcp_nodelay" directive caused an error if a WebSocket
connection was proxied into a unix domain socket.
*) Bugfix: the $upstream_response_length variable has an incorrect value
"0" if buffering was not used.
Thanks to Piotr Sikora.
*) Bugfix: in the eventport and /dev/poll methods.
*) Bugfix: new sessions were not always stored if the "ssl_session_cache
shared" directive was used and there was no free space in shared
memory.
Thanks to Piotr Sikora.
*) Bugfix: responses might hang if subrequests were used and a DNS error
happened during subrequest processing.
Thanks to Lanshun Zhou.
*) Bugfix: in the ngx_http_mp4_module.
Thanks to Gernot Vormayr.
*) Bugfix: in backend usage accounting.
Changes since 0.4.0, from NEWS file:
* Add MellonSPentityId to control entityId in autogenerated metadata
Version 0.6.1
---------------------------------------------------------------------------
* Fix the POST replay functionality when multiple users logging in
at once.
* Add a fallback for the case where the POST replay data has expired
before the user logs in.
Version 0.6.0
---------------------------------------------------------------------------
Backwards-incompatible changes:
* The POST replay functionality has been disabled by default, and the
automatic creation of the MellonPostDirectory target directory has been
removed. If you want to use the POST replay functionality, take a
look at the README file for instructions for how to enable this.
* Start discovery service when accessing the login endpoint. We used
to bypass the discovery service in this case, and just pick the first
IdP. This has been changed to send a request to the discovery service
instead, if one is configured.
* The MellonLockFile default path has been changed to:
/var/run/mod_auth_mellon.lock
This only affects platforms where a lock file is required and
where Apache doesn't have write access to that directory during
startup. (Apache can normally create files in that directory
during startup.)
Other changes:
* Fix support for SOAP logout.
* Local logout when IdP does not support SAML 2.0 Single Logout.
* MellonDoNotVerifyLogoutSignature option to disable logout signature
validation.
* Support for relative file paths in configuration.
* The debian build-directory has been removed from the repository.
* Various cleanups and bugfixes:
* Fix cookie parsing header parsing for some HTTP libraries.
* Fix inheritance of MellonAuthnContextClassRef option.
* Use ap_set_content_type() instead of accessing request->content_type.
* README indentation cleanups.
* Support for even older versions of GLib.
* Fixes for error handling during session initialization.
* Directly link with GLib rather than relying on the Lasso library
linking to it for us.
* Some code cleanups.
Version 0.5.0
---------------------------------------------------------------------------
* Honour MellonProbeDiscoveryIdP order when sending probes.
* MellonAuthnContextClassRef configuration directive, to limit
authentication to specific authentication methods.
* Support for the HTTP-POST binding when sending authentication
requests to the IdP.
* MellonSubjectConfirmationDataAddressCheck option to disable received
address checking.
* Various cleanups and bugfixes:
* Support for older versions of GLib and APR.
* Send the correct SP entityID to the discovery service.
* Do not set response headers twice.
* Several cleanups in the code that starts authentication.
Fixed in 7.30.0 - April 12 2013
Release contains security-related bug fix
Changes:
imap: Changed response tag generation to be completely unique
imap: Added support for SASL-IR extension
imap: Added support for the list command
imap: Added support for the append command
imap: Added custom request parsing
imap: Added support to the fetch command for UID and SECTION properties
imap: Added parsing and verification of the UIDVALIDITY mailbox attribute
darwinssl: Make certificate errors less techy
imap/pop3/smtp: Added support for the STARTTLS capability
checksrc: ban use of sprintf, vsprintf, strcat, strncat and gets
curl_global_init() now accepts the CURL_GLOBAL_ACK_EINTR flag
Added CURLMOPT_MAX_HOST_CONNECTIONS, CURLMOPT_MAX_TOTAL_CONNECTIONS for new multi interface connection handling
Added CURLMOPT_MAX_PIPELINE_LENGTH, CURLMOPT_CONTENT_LENGTH_PENALTY_SIZE, CURLMOPT_CHUNK_LENGTH_PENALTY_SIZE, CURLMOPT_PIPELINING_SITE_BL and CURLMOPT_PIPELI NING_SERVER_BL for new pipelining control
Bugfixes:
SECURITY ADVISORY: cookie tailmatching to avoid cross-domain leakage
darwinssl: Fix build under Leopard
DONE: consider callback-aborted transfers premature
ntlm: Fixed memory leaks
smtp: Fixed an issue when processing EHLO failure responses
pop3: Fixed incorrect return value from pop3_endofresp()
pop3: Fixed SASL authentication capability detection
pop3: Fixed blocking SSL connect when connecting via POP3S
imap: Fixed memory leak when performing multiple selects
nss: fix misplaced code enabling non-blocking socket mode
AddFormData: prevent only directories from being posted
darwinssl: fix infinite loop if server disconnected abruptly
metalink: fix improbable crash parsing metalink filename
show proper host name on failed resolve
MacOSX-Framework: Make script work in Xcode 4.0 and later
strlcat: remove function
darwinssl: Fix send glitchiness with data > 32 or so KB
polarssl: better 1.1.x and 1.2.x support
various documentation improvements
multi: NULL pointer reference when closing an unused multi handle
SOCKS: fix socks proxy when noproxy matched
install-sh: updated to support multiple source files as arguments
PolarSSL: added human readable error strings
resolver_error: remove wrong error message output
docs: updates HTML index and general improvements
curlbuild.h.dist: enhance non-configure GCC ABI detection logic
sasl: Fixed null pointer reference when decoding empty digest challenge
easy: do not ignore poll() failures other than EINTR
darwinssl: disable ECC ciphers under Mountain Lion by default
CONNECT: count received headers
build: fixes for VMS
CONNECT: clear 'rewindaftersend' on success
HTTP proxy: insert slash in URL if missing
hiperfifo: updated to use current libevent API
getinmemory.c: abort the transfer nicely if not enough memory
improved win32 memorytracking
corrected proxy header response headers count
FTP quote operations on re-used connection
tcpkeepalive on win32
tcpkeepalive on Mac OS X
easy: acknowledge the CURLOPT_MAXCONNECTS option properly
easy interface: restore default MAXCONNECTS to 5
win32: don't set SO_SNDBUF for windows vista or later versions
HTTP: made cookie sort function more deterministic
winssl: Fixed memory leak if connection was not successful
FTP: wait on both connections during active STOR state
connect: treat a failed local bind of an interface as a non-fatal error
darwinssl: disable insecure ciphers by default
FTP: handle "rubbish" in front of directory name in 257 responses
mk-ca-bundle: Fixed lost OpenSSL output with "-t"
Upstream changes:
3.94 2013-04-08
- Added is_hidden method to Mojolicious::Routes.
- Removed deprecated start method from Mojolicious::Commands.
- Improved documentation.
- Improved tests.
- Fixed small selector bug in get command.
- Fixed small anchor bug in Mojolicious::Plugin::PODRenderer.
3.93 2013-04-05
- Deprecated Mojo::IOLoop::Delay::end in favor of generated callbacks.
- Improved Mojo::IOLoop::Delay to be able to generate callbacks that can
capture all arguments.
- Improved prefork command to allow -a and -L values below 1 second.
- Improved documentation.
- Improved tests.
- Fixed multiple timing bugs in Mojo::IOLoop::Delay.
3.92 2013-04-03
- Added monotonic clock support to make Mojolicious more resilient to time
jumps.
- Added steady_time function to Mojo::Util.
- Removed deprecated namespace method from Mojolicious::Routes.
- Removed deprecated base_tag helper.
- Improved WebSocket send method to stringify objects. (jberger)
- Improved version command to show required versions of optional
dependencies.
- Improved documentation.
- Improved tests.
- Fixed RFC 6901 compliance of Mojo::JSON::Pointer. (jberger, sri)
- Fixed a few small Unicode bugs in get command.
3.91 2013-03-17
- Improved bad charset handling in Mojo::DOM::HTML.
- Improved documentation.
- Improved tests.
- Fixed HTTPS proxy support for blocking requests in Mojo::UserAgent.
- Fixed support for RFC 2817 in Mojo::Message::Request.
- Fixed whitespace bug in Mojo::DOM::HTML.
- Fixed proxy detection bug in get command.
3.90 2013-03-14
- Added direct array access for parsed parameters to Mojo::Parameters.
- Added direct array access for path parts to Mojo::Path.
- Improved dumper helper to sort hash keys.
- Improved documentation.
- Improved tests.
- Fixed bug in Mojo::Headers that prevented multiline headers from being
parsed correctly.
- Fixed multiline header support in hash representation of Mojo::Headers.
- Fixed cloning bug in Mojo::Headers.
3.89 2013-03-04
- Improved documentation.
- Improved tests.
- Fixed installable scripts to not "use lib", which sadly breaks updated
dual-life modules. (jberger, sri)
- Fixed bug preventing delayed normalization for reused Mojo::Path objects.
- Fixed path matching bug in Mojo::Path.
3.88 2013-03-03
- Improved Mojo::Path to delay normalization as long as possible.
- Improved Mojo::Path performance.
- Improved documentation.
- Improved tests.
- Fixed small domain detection bug in Mojo::UserAgent::CookieJar.
File too long (should be no more than 24 lines).
Line too long (should be no more than 80 characters).
Trailing empty lines.
Trailing white-space.
Trucated the long files as best as possible while preserving the most info
contained in them.
* I will check the build on NetBSD 5.2 later...
Changelog:
Continued performance improvements around common browser tasks (page loads, downloads, shutdown, etc.).
Continued implementation of draft ECMAScript 6 (clear() and Math.imul).
<canvas> now supports blend modes.
Various <audio> and <video> improvements have been implemented.
The Details button on the Crash Reporter has been fixed (bug 793972).
Fixed several stability issues.
Fixed in SeaMonkey 2.17
MFSA 2013-40 Out-of-bounds array read in CERT_DecodeCertPackage
MFSA 2013-39 Memory corruption while rendering grayscale PNG images
MFSA 2013-38 Cross-site scripting (XSS) using timed history navigations
MFSA 2013-37 Bypass of tab-modal dialog origin disclosure
MFSA 2013-36 Bypass of SOW protections allows cloning of protected nodes
MFSA 2013-35 WebGL crash with Mesa graphics driver on Linux
MFSA 2013-34 Privilege escalation through Mozilla Updater
MFSA 2013-31 Out-of-bounds write in Cairo library
MFSA 2013-30 Miscellaneous memory safety hazards (rv:20.0 / rv:17.0.5)
Fixed in SeaMonkey 2.16.1
MFSA 2013-29 Use-after-free in HTML Editor
Changelog
=========
Since 2.2.4.1
----------------
bugfix: Add/edit member form permissions goes down if screen is not wide enough.
bugfix: Member selector onblur must select one of the list if there is any
match and there is at least one character written.
bugfix: Object picker: do not show object types not allowed for the user in
the left panel
bugfix: D&D classify is allowing to classify in read only members.
bugfix: Do not show parent members in member selector if user has no
permissions over them.
bugfix: Upgrade 1.7 -> 2.X: give permissions over timeslots, reports and
templates in all workspaces where the user can manage tasks.
bugfix: Non admin users cannot delete timeslots.
feature: Can define required dimension without specifying object types.
feature: Option to view members in a separate column.
Since 2.2.4-beta
----------------
bugfix: Cannot delete user with no objects associated.
bugfix: Javascript error when loading and change logo link does not exists.
bugfix: plugin administration fixes.
bugfix: Email content parts that come in attachments are not shown.
bugfix: Tasks edition in gantt chart loses task description.
bugfix: Adding client or project under another member does not remember
selected parent when using quickadd and details button.
feature: More options for tasks edition.
feature: More options for composing emails.
language: Languages updated: German, French, Japanese, Polski.
Drupal 7.22, 2013-04-03
-----------------------
- Allowed the drupal_http_request() function to be overridden so that
additional HTTP request capabilities can be added by contributed modules.
- Changed the Simpletest module to allow PSR-0 test classes to be used in
Drupal 7.
- Removed an unnecessary "Content-Disposition" header from private file
downloads; it prevented many private files from being viewed inline in a web
browser.
- Changed various field API functions to allow them to optionally act on a
single field within an entity (API addition: http://drupal.org/node/1825844).
- Fixed a bug which prevented Drupal's file transfer functionality from working
on some PHP 5.4 systems.
- Fixed incorrect log message when theme() is called for a theme hook that does
not exist (minor string change).
- Fixed Drupal's token-replacement system to allow spaces in the token value.
- Changed the default behavior after a user creates a node they do not have
access to view. The user will now be redirected to the front page rather than
an access denied page.
- Fixed a bug which prevented empty HTTP headers (such as "0") from being set.
(Minor behavior change: Callers of drupal_add_http_header() must now set
FALSE explicitly to prevent a header from being sent at all; this was already
indicated in the function's documentation.)
- Fixed OpenID errors when more than one module implements hook_openid(). The
behavior is now changed so that if more than one module tries to set the same
parameter, the last module's change takes effect.
- Fixed a serious documentation bug: The $name variable in the
taxonomy-term.tpl.php theme template was incorrectly documented as being
sanitized when in fact it is not.
- Fixed a bug which prevented Drupal 6 to Drupal 7 upgrades on sites which had
duplicate permission names in the User module's database tables.
- Added an empty "datatype" attribute to taxonomy term and username links to
make the RDFa markup upward compatible with RDFa 1.1 (minor markup addition).
- Fixed a bug which caused the denial-of-service protection added in Drupal
7.20 to break certain valid image URLs that had an extra slash in them.
- Fixed a bug with update queries in the SQLite database driver that prevented
Drupal from being installed with SQLite on PHP 5.4.
- Fixed enforced dependencies errors updating to recent versions of Drupal 7 on
certain non-MySQL databases.
- Refactored the Field module's caching behavior to obtain large improvements
in memory usage for sites with many fields and instances (API addition:
http://drupal.org/node/1915646).
- Fixed entity argument not being passed to implementations of
hook_file_download_access_alter(). The fix adds an additional context
parameter that can be passed when calling drupal_alter() for any hook (API
change: http://drupal.org/node/1882722).
- Fixed broken support for translatable comment fields (API change:
http://drupal.org/node/1874724).
- Added an assertThemeOutput() method to Simpletest to allow tests to check
that themed output matches an expected HTML string (API addition).
- Added a link to "Install another module" after a module has been successfully
downloaded via the Update Manager (UI change).
- Added an optional "exclusive" flag to installation profile .info files which
allows Drupal distributions to force a profile to be selected during
installation (API addition).
- Fixed a bug which caused the database API to not properly close database
connections.
- Added a link to the URL for running cron from outside the site to the Cron
settings page (UI change).
- Fixed a bug which prevented image styles from being reverted on PHP 5.4.
- Made the default .htaccess rules protocol sensitive to improve security for
sites which use HTTPS and redirect between "www" and non-"www" versions of
the page.
- Numerous small bug fixes.
- Numerous API documentation improvements.
- Additional automated test coverage.
Version 2.11.11 (2013-04-03)
----------------------------
### Fixed
Pass the style attribute to empty image gallery table cells (see #5485).
### Fixed
Do not override the website path in the default config file (see #5339).
Release date: 2013-04-04
Opera 12.15 is a recommended upgrade offering security and stability
enhancements.
Fixes and Stability Enhancements since Opera 12.14
General and User Interface
* Fixed an issue where the search bar's default engine could be overridden by
third-party apps.
Security
* Fixed a moderately severe issue, as reported by Attila Suszter; details will
be disclosed at a later date.
* Added safeguards against attacks on the RC4 encryption protocol; see our
advisory: http://www.opera.com/security/advisory/1046
* Fixed an issue where cookies could be set for a top-level domain; see our
advisory: http://www.opera.com/security/advisory/1047
COMMENT should not be longer than 70 characters.
COMMENT should not begin with 'A'.
COMMENT should not begin with 'An'.
COMMENT should not begin with 'a'.
COMMENT should not end with a period.
COMMENT should start with a capital letter.
pkglint warnings. Some files also got minor formatting, spelling, and style
corrections.
Changelog:
NEW
Per-window Private Browsing. Learn more.
NEW
New download experience. Learn more.
NEW
Ability to close hanging plugins, without the browser hanging
CHANGED
Continued performance improvements around common browser tasks (page loads, downloads, shutdown, etc.)
DEVELOPER
Continued implementation of draft ECMAScript 6 - clear() and Math.imul
DEVELOPER
New JavaScript Profiler tool
HTML5
getUserMedia implemented for web access to the user's camera and microphone (with user permission)
HTML5
<canvas> now supports blend modes
HTML5
Various <audio> and <video> improvements
FIXED
Details button on Crash Reporter (793972)
FIXED
Unity plugin doesn't display in HiDPI mode (829284)
FIXED
20.0: Security fixes can be found here
Fixed in Firefox 20
MFSA 2013-40 Out-of-bounds array read in CERT_DecodeCertPackage
MFSA 2013-39 Memory corruption while rendering grayscale PNG images
MFSA 2013-38 Cross-site scripting (XSS) using timed history navigations
MFSA 2013-37 Bypass of tab-modal dialog origin disclosure
MFSA 2013-36 Bypass of SOW protections allows cloning of protected nodes
MFSA 2013-35 WebGL crash with Mesa graphics driver on Linux
MFSA 2013-34 Privilege escalation through Mozilla Updater
MFSA 2013-33 World read and write access to app_tmp directory on Android
MFSA 2013-32 Privilege escalation through Mozilla Maintenance Service
MFSA 2013-31 Out-of-bounds write in Cairo library
MFSA 2013-30 Miscellaneous memory safety hazards (rv:20.0 / rv:17.0.5)
Version 0.5
~~~~~~~~~~
Released on 2013-04-01
* Change behavior of passing ``FLATPAGES_MARKDOWN_EXTENSIONS`` to
renderer function, now whole :class:`FlatPages` instance passed as
second argument, this helps user provide more robust renderer
functions.
Upstream changes:
1.0022 2013-04-02 12:37:42 PDT
[BUG FIXES]
- Fixed a major bug in 1.0020-1.0021 where posix_default prevents arbitrary arguments
for plackup-compat (e.g. starman) to handle them (Thanks to justnoxx) Starman#66
[IMPROVEMENTS]
- Fixed test warnings (Keedi Kim)
1.0021 2013-04-02 11:20:00 PDT
- Repackage with Milla v0.9.6 #392
1.0020 2013-04-01 19:34:54 PDT
[INCOMPATIBLE CHANGES]
- Enable posix_default and gnu_compat in plackup Getopt, so that ambiguous
option names do not match with long options accidentally
[IMPROVEMENTS]
- Document fix for the AccessLog (ether)
- Special-case Content-Length and Content-Type for %{}i in AccessLog format #387
1.0019 2013-04-01 17:58:25 PDT
- Trial release with Milla
1.0018 Fri Mar 8 10:43:45 PST 2013
[IMPROVEMENTS]
- Performance boost in Plack::Request#query_parameters (lestrrat)
- Added custom log formats for %m, %U, %q and %H (Hiroshi Sakai)
- Fixed warnings in SimpleContentFilter (earino)
[DOCUMENTATION]
- Added docs about plackup --path
- Added docs about using manager object in Plack::Handler::FCGI
1.0017-TRIAL Thu Feb 7 19:21:24 PST 2013
[INCOMPATIBLE CHANGES]
- Gives you warnings when you use one of Plack::App objects in `plackup -e` or
in .psgi files but forgot to call ->to_app to make it a PSGI application (#369)
Still automatically converts them for backward compatibility, but in the
loading time inside Plack::Builder.
[BUG FIXES]
- chdir to the CGI path when executing CGIBin (#338, #368)
Here is summary from release announce. Full changes are available in
docs/history file. (XSS problem was already fixed by geeklog-1.8.2sr1.)
* Improved strength of password hashing
* Allow Topics to have child Topics
* Allow Articles, Blocks and other Plugin objects to be associated with more
than one Topic
* Topic Breadcrumb support
* Emergency Rescue Tool is included with the Geeklog Install
* Added support for MySQLi
* Add Stop Forum Spam and Spam Number of Links Modules to Spam-X
* A new theme called Denim which is based on Responsive Web Design
* A new theme called Modern Curve
* Comments Form on same page as Articles and plugin other Plugin objects
* Comments RSS Feed Plugin now integrated into Geeklog
* Includes updated versions of jQuery to 1.9.1 and jQuery UI to 1.10.1
* Updated FCKeditor version to 2.6.9
* XSS fixes for the Install, Configuration, Topic Editor, Polls Plugin and
Calendar Plugin
* Twitter OAuth API updated
* HTML 5 DOCTYPE
pkgsrc change: stop using DIST_SUBDIR.
Version 3.0.6 (2013-03-21)
--------------------------
### Fixed
Do not add links to news, events, FAQs or newsletters to the sitemap if the
target page has not been published (see #5520).
### Fixed
Include the local configuration file twice, once before and once after the
module configuration files are parsed (see #5490). This will make settings like
the debug or safe mode work properly.
### Fixed
Correctly set the RSS feed self-reference (see #5478).
### Fixed
Remove `­` and ` ` from RSS and Atom feeds (see #5473).
### Fixed
Do not remove the grid column margin on mobile devices (see #5475).
### Fixed
Store the relative path to the installation in the `pathconfig.php` (see #5339).
### Fixed
Correctly send the comment moderation mails (see #5443).
### Fixed
Correctly create the user home directory upon registration (see #5437).
### Improved
Made the `.htaccess` files Apache 2.4 ready (see #5032).
### Fixed
Also truncate opened files in `File::truncate()` (see #5459).
### Fixed
Added the "allowTransparency" attribute to the mediabox script (see #5077).
### Fixed
The submit button label was not shown in the `FormSubmit` widget (see #5434).
### Fixed
Show invisible elements in the back end preview (see #5449).
### Fixed
Allow to create forward pages without a specific target (see #5453).
### Fixed
Updated the TinyMCE typolinks plugin (see #5329).
### Fixed
Correctly initialize the user's pagemounts (see #5454).
### Fixed
Support loading static JavaScripts in the `config.php` files (see #4890).
### Fixed
Show all articles if the article list module is in the same column (see #5373).
### Fixed
Do not show `mail_` templates from theme folders (see #5379).
### Fixed
Consider only published events when finding the calendar boundaries and only
render the previous and next links if there are events (see #5426).
### Fixed
Do not override the header and footer height in the layout builder (see #5368).
### Fixed
Correctly reset fallback, default and "do not copy" fields (see #5252).
Version 2.11.10 (2013-03-21)
----------------------------
### Fixed
Cast varchar date fields to int when selecting from the database (see #5503).
### Fixed
Only unset POST variables if `Widget::submitInput()` returns `true` (see #5474).
### Fixed
Strictly compare values when determining whether to save or not (see #5471).
### Updated
Updated TinyMCE to version 3.5.8 (see #5329).
### Fixed
Correctly show the "invalid date and time" error message (see #5480).
### Fixed
Correctly split the words when adding to the search index (see #5363).
### Fixed
Correctly load TinyMCE in IE7 and IE8 (see #5346).
### Fixed
Send the correct cache headers in "client cache only" mode (see #5358).
### Fixed
Remove the session of deleted or disabled users (see #5353).
### Fixed
Correctly set the cookie paths (see #5339).
The biggest fix is for a memory leak introduced in Django 1.5. Under certain circumstances, repeated iteration over querysets could leak memory - sometimes quite a bit of it. If you'd like more information, the details are in our ticket tracker (and in a related issue in Python itself).
If you've noticed memory problems under Django 1.5, upgrading to 1.5.1 should fix those issues.
Django 1.5.1 also includes a couple smaller fixes:
* Module-level warnings emitted during tests are no longer silently hidden.
* Prevented filtering on password hashes in the user admin.
Flask-BabelEx adds i18n/l10n support to Flask applications with
the help of the Babel library.
This is fork of official Flask-Babel extension with following
features:
* It is possible to use multiple language catalogs in one Flask
application;
* Localization domains: your extension can package localization
file(s) and use them if necessary;
* Does not reload localizations for each request.
Version 0.4
~~~~~~~~~~~
Released on 2013-04-01
* Add ``FLATPAGES_MARKDOWN_EXTENSIONS`` config to setup list of Markdown
extensions to use with default HTML renderer.
* Fix a bug with non-ASCII filenames.
Upstream changes(since 2.4.0):
2.4.3
Regression fix
MDL-38474 - Teachers unable to access server files
Note: Moodle 2.4.3 is being released just one week after 2.4.2 in response to a serious regression being discovered in 2.4.2.
Other fixes
MDL-38303 - MUC: Session cache is adjusted accordingly when user logs in or out
MDL-38386 - Upgrade step for 24 and master adjusted
MDL-38332 - Browsing users paginates properly for multiples of 30 users
MDL-33424 - Images correctly restored from a 1.9 course quiz
MDL-34011 - Display of student attempts for Short Answer questions in Lessons is now correct
2.4.2
Highlights
MDL-32975 - There is an option to sort My Courses list alphabetically
MDL-36297 - HTML purifier strings are now cached
MDL-35074 - More students can now appear per page in the Grader Report
MDL-34435 - Actions in categories are now logged
Functional changes
MDL-30669 - Admins are warned before deleting 'Sticky' site-wide blocks in 2.2 accidentally through a course page
MDL-37894 - Not yet opened quizzes show close date as well as open date
MDL-35336 - Process for enabling statistics is now clearer
API changes
MDL-36363 - Removing a file store cache instance removes its folder too
MDL-31636 - Comments API allows plugins to set the date format
Security issues
MSA-13-0011 Calendar subscription capability issue
MSA-13-0012 Information leak in course profiles
MSA-13-0013 Server information revealed through exception messages
MSA-13-0014 Password revealed in WebDav repository
MSA-13-0015 Cross-site scripting issue in Filepicker
MSA-13-0016 External Entity Injection through Zend library
MSA-13-0017 Form manipulation issue in notes
MSA-13-0018 Personal information leak through repositories
MSA-13-0019 Unauthorised settings editing through WebDav repository
Fixes and improvements
Fixes for MUC - MDL-37683 MDL-37545 MDL-38110 MDL-38165
MDL-37792 - Conditional Resource based on a profile interest field now works when fields are empty
MDL-38173 - Adding modules to courses where completion is enabled no longer causes corruption
MDL-37847 - Plain text essays now show HTML special characters appropriately
MDL-37774 - Moodle 1.9 to 2.x course restore now works with directory resources
MDL-37563 - Assignment upgrade now includes conditional access settings
MDL-36757 - Editing an activity no longer reveals hidden grades
MDL-35780 - Participants page disclosure of email addresses is now consistent
MDL-35175 - Lesson now shows attempts if associated with a grouping
MDL-37710 - Students can access their own submitted files in a team submission assignment
MDL-38352 - Improved language strings added to the English language pack, the most noticeable being 'My Moodle' in the site admin settings renamed as My home
2.4.1
Highlights
MDL-32880 - Make 1.9 blocks restorable in 2.3 onwards
MDL-34791 - Activity quick title edit updates name in gradebook
MDL-35653 - Wiki module works if you activate the force format option
API changes
MDL-30700 - There is a new function "text_sorting($columnname)" for the class flexible_table which allows you to specify which columns are of type "text" so they can be sorted correctly in all databases.
MDL-35593 - core_webservice_get_site_info returns version number as PARAM_TEXT
MDL-30961 - get_course_contents web service's name value is now PARAM_RAW
Security issues
MSA-13-0001 - Security issue in Google Spellchecker in TinyMCE
MSA-13-0002 - Capability issue with Outcome editing
MSA-13-0003 - Potential server file access through backup restoration
MSA-13-0004 - Information leak through activity report
MSA-13-0005 - Potential phishing attack through URL redirects
MSA-13-0006 - Potential information leak in Assignment module
MSA-13-0007 - Potential exploit in messaging
MSA-13-0008 - Information leak through Blog RSS
MSA-13-0009 - Information leak through Blog RSS
MSA-13-0010 - Failure to check capabilities in calendar
Fixes and improvements
MDL-36680 - Overview report now gives correct course total by not including hidden item grades
MDL-37165 - Assignment summary displays on Oracle
MDL-36963 - Automatic updates deployer needs checks directory permissions
1.0.5
* SQLAlchemy 0.8 support
* Choices and PostgreSQL Enum field type support
* Flask-BabelEx will be used to localize administrative interface
* Simple text file editor
* File admin has additional hooks: rename, edit, upload, etc
* Simple text file editor
* External links in menu
* Column descriptions
* Possibility to override master template
* Reworked templates. New âlayoutâ sample with completely different
administrative UI
* Ability to customize wtforms widget rendering through form_widget_args
property
* German translation (WIP)
* Updated documentation
* Lots of bug fixes
* Change to 5.0 branch.
Changelog:
Version 5.0.0 March 14th 2013
New design
Restore deleted files
New fulltext search
Display names
New photo gallery
Improved calendar and contacts
Improved bookmarks
New documentation system
Improved file cache
Improved security checks
Security hardening in templates
Security hardening: Implemented Content Security Policy
Better versioning of better autoexpire
Extended external storage
New OCS REST API support
Improved apps management
After curl 7.25.0 update (imported to pkgsrc at 20120417),
"curl-config --libs" no longer returns "-Wl,-R/usr/pkg/lib"
while "curl-config --static-libs" still returns it.
Fixes the root cause of libcurl part of PR pkg/46567, and this is
also required to fix openoffice3 issue as mentioned in PR pkg/46983.
The problem is tracked and reported by Yasushi Oshima.
Bump PKGREVISION.
* Add a `report` reaction.
This reaction does not halt the request, but leaves it up to the app to
react on this information. This allows e.g. frameworks to ignore failures
in certain conditions.
# Changelog
## Version 3.0.2 - 2013-03-13
* Fix generated pages to say they are utf-8 [#4]
* Fix formatting of usage section of documentation
* Update dependencies
* Convert to RDoc 4.0
## 1.0.3 (2013-03-14)
* Fixed a bug that broke media queries. [Rob]
* Fixed a bug that caused the input string to be modified when modifications
should only have been made to a copy.
added sanity-check for time-interval-option
added x-hiername for NetCache-Logparsing
fix for iPlanet Web Proxy Server
moved CARP from HIT to MISS section
2.0.4b (2013-02-04)
------------------
Bug fixes
- Fixed order of precedence for options (#2166)
The following order is enforced - first match wins
1. Command line arguments
2. .GNUstepDefaults
3. /etc/sogo/{debconf,sogo}.conf
4. SOGoDefaults.plist
- fixed handling of LDAP DN containing special characters (#2152, #2207)
- fixed handling of credential files for older GNUsteps (#2216)
- fixed display of messages with control characters (#2079, #2177)
- fixed tooltips in contacts list (#2211)
- fixed classification menu in component editor (#2223)
- fixed link to ACL editor for 'any authenticated user' (#2222, #2224)
- fixed saving preferences when mail module is disabled
- fixed handling for long credential strings (#2212)
2.0.4a (2013-01-30)
------------------
Enhancements
- updated Czech translation
- birthday is now properly formatted in addressbook module
Bug fixes
- fixed handling of groups with spaces in their UID
- fixed possible infinite loop in repeatable object
- fixed until date in component editor
- fixed saving all-day event in appointment editor
- fixed handling of decoding contacts UID
- fixed support of GNUstep 1.20 / Debian Squeeze
2.0.4 (2013-01-25)
------------------
New features
- sogo-tool: new "dump-defaults" command to easily create /etc/sogo/sogo.conf
Enhancements
- The sogo user is now a system user.
For new installs, this means that 'su - sogo' won't work anymore.
Please use 'sudo -u sogo cmd' instead
If used in scripts from cronjobs, 'requiretty' must be disabled in sudoers
- added basic support for LDAP URL in user sources
- renamed default SOGoForceIMAPLoginWithEmail to
SOGoForceExternalLoginWithEmail and extended it to SMTP authentication
- updated the timezone files to the 2012j edition and removed RRDATES
- updated CKEditor to version 4.0.1
- added Finnish translation - thanks to Kari Salmu
- updated translations
- recurrence-id of all-day events is now set as a proper date with no time
- 'show completed tasks' is now persistent
- fixed memory usage consumption for remote ICS subscriptions
Bug fixes
- fixed usage of browser's language for the login page
- fixed partstat of attendee in her/his calendar
- fixed French templates encoding
- fixed CardDAV collections for OS X
- fixed event recurrence editor (until date)
- fixed column display for subfolders of draft & sent
- improved IE7 support
- fixed drag'n'drop of events with Safari
- fixed first day of the week in datepickers
- fixed exceptions of recurring all-day events
2.0.3 (2012-12-06)
------------------
New features
- support for SAML2 for single sign-on, with the help of the lasso library
- added support for the "AUTHENTICATE" command and SASL mechanisms
- added domain default SieveHostFieldName
- added a search field for tasks
Enhancements
- search the contacts for the organization attribute
- in HTML mode, optionally place answer after the quoted text
- improved memory usage of "sogo-tool restore"
- fixed invitations status in OSX iCal.app/Calendar.app (cleanup RSVP attribute)
- now uses "imap4flags" instead of the deprecated "imapflags"
- added Slovak translation - thanks to Martin Pastor
- updated translations
Bug fixes
- fixed LDIF import with categories
- imported events now keep their UID when possible
- fixed importation of multiple calendars
- fixed modification date when drag'n'droping events
- fixed missing 'from' header in Outlook
- fixed invitations in Outlook
- fixed JavaScript regexp for Firefox
- fixed JavaScript syntax for IE7
- fixed all-day event display in day/week view
- fixed parsing of alarm
- fixed Sieve server URL fallback
- fixed Debian cronjob (spool directory cleanup)
3.1.14
- When include_once_override is on, use the cached realpath. See rev. 328172
for a full explanation (Rasmus)
- Fixed bug #63852 (apc 3.1.13 fails to build if __APC_SMA_DEBUG__ is set)
(Laruence)
- Fixed bug #63434 (Segfault if apc.shm_strings_buffer excceed apc.shm_size)
(Laruence)
- Fixed bug #63070 (apc.include_once_override bug) (Laruence)
- Fixed bug #62151 (Stat files only require read access only, windows). (Pierre)
- fix num. segfaults by revert rev. 326820 and issue reported in bug #62972
- Fixed bug #63491 file_md5 value was wrong when use apc_bin_load function
(Anatoliy)
- Fixed PHP 5.5 compatibility (related to VM variables access fix) (Anatoliy)
- Added tests for bugs #63224, #63545, #63669 (Anatoliy)
A Ruby wrapper for the Python [pygments syntax
highlighter](http://pygments.org/).
pygments.rb works by talking over a simple pipe to a long-lived Python child
process. This library replaces
[github/albino](https://github.com/github/albino), as well as a version of
pygments.rb that used an embedded Python interpreter.
Each Ruby process that runs has its own 'personal Python'; for example, 4
Unicorn workers will have one Python process each. If a Python process dies,
a new one will be spawned on the next pygments.rb request.
Upstream changes:
0.28 Thu Mar 14 2013
[FIXES]
- the Accept-Encoding header removal code was broken in the previous
version. Now the header will be removed as soon as a body filter
is configured.
[TEST]
- use File::Spec in the test suite to compute portable file names,
to avoid some test failures, like
http://www.cpantesters.org/cpan/report/856ca676-6bf5-1014-bfa1-9d8aa3912248
0.27 Fri Mar 8 2013
[IMPROVEMENTS]
- in HTTP::Proxy::HeaderFilter::standard, now remove the Accept-Encoding header
only when we know we'll actually look at the response body
[TESTS]
- use httpstat.us to test HTTP statuses
0.26 Wed Feb 6 2013
[IMPROVEMENTS]
- remove a "Use of "goto" to jump into a construct is deprecated"
warning (Tom Hukins)
[DOCUMENTATION]
- fix RT #77685 (Tom Hukins)
- improved the number of links to other modules from the documentation
[TEST]
- fix RT #71771 (Tom Hukins)
- fix test failures in POD tests (Tom Hukins)
## 2.5.0 / 2013-03-06
* Prevent Object methods from being called on drops
* Avoid symbol injection from liquid
* Added break and continue statements
* Fix filter parser for args without space separators
* Add support for filter keyword arguments
Since 2.2.3.1-beta
------------------
bugfix: Search in a member does not find file contents.
bugfix: Click on "search everywhere" does not find file contents.
bugfix: Groups listed alphabetically in the Administration Panel.
bugfix: Monthly view calendar print shows empty calendar.
bugfix: Improvements in performance of overview widgets.
bugfix: Timeslots are not reclassified reclassifying tasks.
bugfix: Cannot delete members if it has objects.
bugfix: Member deletion does not clean all related tables.
bugfix: Only managers or superior roles can change other user passwords.
bugfix: Several missing langs and undefined variables warnings clean.
bugfix: Db error when adding two workspaces with the same name.
bugfix: Quick add files - all radio buttons can be selected.
system: Russian translations updated.
Since 2.2.2
----------------
bugfix: Owner company cannot be classified.
bugfix: Task list group by user fix.
bugfix: Add pdf and docx files to searchable objects.
bugfix: js managers bugfixes.
bugfix: Cannot edit/delete mails from deleted accounts.
bugfix: Error in tasks reports when ordering by 'order' column.
bugfix: Fixes in migration from 1.X of custom properties.
usability: Reports can be edited to allow execution in every context.
usability: Performance improved in tasks list.
usability: Users are filtered by permissions in 'People' dimension when filtering by a workspace.
usability: Contacts are filtered in 'People' dimension when filtering by a workspace if they belong to the workspace.
system: Portuguese language updated.
Since 2.2.1
----------------
bugfix: logged_user fix when classifying attachments
bugfix: go back instead of redirect when editing file properties.
bugfix: chmod after mkdir when repository file backend creates directory
bugfix: Several template instatiation fixes
bugfix: mail classification bugfix
bugfix: allow to classify mails in workspaces,tags
bugfix: administration/users: 10 users per page fix
bugfix: do not use objects in estimated-worked widget, use raw data for better performance
bugfix: language fixes
bugfix: cannot use assigned_to combo when adding tasks in ie
bugfix: ie compatibility fix in calendar toolbars
bugfix: enable/disable cron events for calendar export/import when adding/deleting accounts
bugfix: html tags in task tooltip description at calendar
bugfix: cvs export prints html tags
bugfix: users with can_manage_security cannot manage groups
bugfix: view week calendar views don't show tasks all days if task starts or ends in another week
bugfix: dont show timeslots of other users if cannot see assigned to other's tasks
bugfix: ext buttons hechos a lo chancho
bugfix: patch if not exists function array_fill_keys (para php < 5.2)
bugfix: break large words in task description
bugfix: administrator cannot log in to admin panel when asking for credentials
bugfix: cannot edit file after uploaded from object picker
bugfix: getTimeValue when 12:XX AM
bugfix: bugfix in custom reports with boolean conditions on custom properties
bugfix: admin users paging fix
bugfix: migration companies comments fix
Since 2.2.1-rc
----------------
bugfix: Cannot manage plugins if no super admin.
bugfix: Reports were not grouping unclassified objects.
bugfix: Reports grouping misses a group.
bugfix: Fixed findById function in ContentDataObjects.
bugfix: Fixed Email plugin installation.
bugfix: Fixed translations for dimension names.
bugfix: Error with company logo when sending notifications.
bugfix: Time report fix when selecting custom dates and listing paused timeslots.
bugfix: Fix when getting plugin's javascript translations.
Since 2.2
----------------
bugfix: Calendar monthly view bugs with repeating events.
bugfix: Permissions system fix.
bugfix: Projects appear in object picker.
bugfix: language fixes (en_us, es_la, es_es).
bugfix: Error in calendar when user has timezone=0.
bugfix: Formatted tasks description and notes content does not shows italics and quotes when viewing.
bugfix: Compressing files does not create compressed file in the current context.
bugfix: Sometimes can subscribe users with no permissions to the object.
bugfix: Activity widget bug with general timeslots.
bugfix: Error when selecting default workspace in mail account edition.
bugfix: User types are not transalted.
bugfix: Prevent double generation of tasks when completing a repetitive task instance (double click on complete link).
bugfix: CSV export fixes at Total tasks times report.
usability: Create events according the filtered user.
usability: Config option to show tab icons.
usability: Config option to enable/disable milestones.
* Change the :ignore_crawl_delay option to a handler option :crawl_delay.
* Merge back the previous change to the source file.
* Remove Gemfile.lock.
* Add the ability to externalize the enforcement of the robots.txt Craw
jasonhowes authored a month ago.
* Migrate from jeweler to bundle gem.
=== unicorn 4.6.2 - HTTP parser fix for Rainbows! / 2013-02-26 02:59 UTC
This release fixes a bug in Unicorn::HttpParser#filter_body
which affected some configurations of Rainbows! There is
also a minor size reduction in the DSO.
=== unicorn 4.6.1 - minor cleanups / 2013-02-21 08:38 UTC
Unicorn::Const::UNICORN_VERSION is now auto-generated from
GIT-VERSION-GEN and always correct. Minor cleanups for
hijacking.
=== unicorn 4.6.0 - hijacking support / 2013-02-06 11:23 UTC
This pre-release adds hijacking support for Rack 1.5 users.
See Rack documentation for more information about hijacking.
There is also a new --no-default-middleware/-N option
for the `unicorn' command to ignore RACK_ENV within unicorn
thanks to Lin Jen-Shin.
There are only documentation and test-portability updates
since 4.6.0pre1, no code changes.
=== unicorn 4.6.0pre1 - hijacking support / 2013-01-29 21:05 UTC
This pre-release adds hijacking support for Rack 1.5 users.
See Rack documentation for more information about hijacking.
There is also a new --no-default-middleware/-N option
for the `unicorn' command to ignore RACK_ENV within unicorn.
3.2.7
* The index and zip functions now work like all other list functions and treat
individual values as single-element lists.
* Avoid stack overflow errors caused by very long function or mixin argument
lists.
* Emit relative paths when using the --line-comments flag of the sass
executable.
* Fix a case where very long numbers would cause the SCSS parser to take
exponential time.
3.2.6
* Support for Rubinius 2.0.0.rc1. All tests pass in 1.8 mode. 1.9 mode has
some tests blocked on Rubinius issue 2139.
* Support for JRuby 1.7.2.
* Support for symlinked executables. Thanks to Yin-So Chen.
* Support for bubbling @supports queries in the indented syntax.
* Fix an incorrect warning when using @extend from within nested @media
queries.
* Update the bundled version of listen to 0.7.2.
== 0.12.1 / 2013-02-19
* Minor Enhancements
* Update Kramdown version to 0.14 (#744, #808)
* Test Enhancements
* Update Rake version to 10.0.3 (#744)
* Update Shoulda version to 3.3.2 (#744)
* Update Redcarpet version to 2.2.2 (#744)
== 0.12.0 / 2012-12-22
* Minor Enhancements
* Add ability to explicitly specify included files (#261)
* Add --default-mimetype option (#279)
* Allow setting of RedCloth options (#284)
* Add post_url Liquid tag for internal post linking (#369)
* Allow multiple plugin dirs to be specified (#438)
* Inline TOC token support for RDiscount (#333)
* Add the option to specify the paginated url format (#342)
* Support Redcarpet 2 and fenced code blocks (#619)
* Better reporting of Liquid errors (#624)
* Bug Fixes
* Allow some special characters in highlight names
* URL escape category names in URL generation (#360)
* Fix error with limit_posts (#442)
* Properly select dotfile during directory scan (#363, #431, #377)
* Allow setting of Kramdown smart_quotes (#482)
* Ensure front-matter is at start of file (#562)
[866c9cd | 2013-02-21 12:21:46 UTC] Michael Fellinger <m.fellinger@gmail.com>
* Version 2013.02.21
[aa22191 | 2013-02-21 12:21:16 UTC] Michael Fellinger <m.fellinger@gmail.com>
* update dependencies
[1a2ee39 | 2013-02-07 00:10:01 UTC] Michael Fellinger <m.fellinger@gmail.com>
* Version 2013.02
[64ca67a | 2013-01-29 23:34:26 UTC] Michael Fellinger <m.fellinger@gmail.com>
* don't do CI for REE, it's not supported anymore, add rbx and jruby 1.9
[079975c | 2013-01-29 21:57:39 UTC] Yorick Peterse <yorickpeterse@gmail.com>
* Preserve values when calling render_full.
Signed-off-by: Yorick Peterse <yorickpeterse@gmail.com>
[a90d3f9 | 2013-01-29 21:53:16 UTC] Yorick Peterse <yorickpeterse@gmail.com>
* Fix for generting URLs using anchor().
Instead of always appending "?" to the URL the anchor() method should only do
so when there actually is a query string.
Signed-off-by: Yorick Peterse <yorickpeterse@gmail.com>
[d2aeb7f | 2013-01-29 21:17:08 UTC] Yorick Peterse <yorickpeterse@gmail.com>
* Caching of provides and method arities.
Caching of a controller's provide handlers as well as the method arities can
lead to a nice performance boost of around 300 transactions/second using the
following benchmark:
require 'innate'
Innate.middleware :live do
run Innate.core
end
Innate::Log.level = Logger::ERROR
Innate.options.mode = :live
ENV['RACK_ENV'] = 'none'
class MainController
Innate.node('/', self)
def index
return 'index'
end
end
[:fast_mappings, :cache_provides, :cache_method_arities].each do |key|
MainController.ancestral_trait[key] = true
end
Innate.start(:adapter => :thin)
Benchmarking this was done by running `siege -c 10 -t 5s -b HOST` and would
initially result in around 1700 trans/sec. When using this commit this sits
between 2000/2100 trans/sec.
To prevent any potential issues the caching of provides and method aritites is
disabled by default.
See Github issue #7 for more information.
Signed-off-by: Yorick Peterse <yorickpeterse@gmail.com>
[06dd4c5 | 2013-01-29 18:25:49 UTC] Yorick Peterse <yorickpeterse@gmail.com>
* Revert action caching.
Instead of caching the entire action instance (which is modified further down
the chain) various parts that make up this process will be cached instead
(where possible).
Signed-off-by: Yorick Peterse <yorickpeterse@gmail.com>
[32440b0 | 2013-01-15 18:38:41 UTC] Michael Fellinger <m.fellinger@gmail.com>
* prevent memory leak from action caching
[040d084 | 2013-01-15 18:37:19 UTC] Michael Fellinger <m.fellinger@gmail.com>
* clean up LRUHash a bit
[a136a72 | 2013-01-14 20:06:22 UTC] Michael Fellinger <m.fellinger@gmail.com>
* build middleware only once
[8aea7cb | 2013-01-14 18:31:37 UTC] Yorick Peterse <yorickpeterse@gmail.com>
* Only compile middleware for the current mode.
Signed-off-by: Yorick Peterse <yorickpeterse@gmail.com>
