* Change enigmail build mechanism
Changelog:
2.25:
SeaMonkey-specific changes
Newsgroup names can now be entered using autocompletion.
See the changes page for a more complete overview.
Mozilla platform changes
The Gamepad API has been finalized and enabled (learn more).
VP9 video decoding has been implemented.
Support for Opus in WebM was added.
Volume control for HTML5 audio/video has been added.
Mac OS X Notification Center support has been added for web notifications.
Support for spdy/2 has been removed.
Support for multi-line flexbox in layout has been added.
Support for the MathML 2.0 mathvariant attribute has been added.
Background thread hang reporting has been added.
<input type=color> has been implemented and enabled.
Fixed several stability issues.
Fixed in SeaMonkey 2.25
MFSA 2014-32 Out-of-bounds write through TypedArrayObject after neutering
MFSA 2014-31 Out-of-bounds read/write through neutering ArrayBuffer objects
MFSA 2014-30 Use-after-free in TypeObject
MFSA 2014-29 Privilege escalation using WebIDL-implemented APIs
MFSA 2014-28 SVG filters information disclosure through feDisplacementMap
MFSA 2014-27 Memory corruption in Cairo during PDF font rendering
MFSA 2014-26 Information disclosure through polygon rendering in MathML
MFSA 2014-23 Content Security Policy for data: documents not preserved by session restore
MFSA 2014-22 WebGL content injection from one domain to rendering in another
MFSA 2014-20 onbeforeunload and Javascript navigation DOS
MFSA 2014-19 Spoofing attack on WebRTC permission prompt
MFSA 2014-18 crypto.generateCRMFRequest does not validate type of key
MFSA 2014-17 Out of bounds read during WAV file decoding
MFSA 2014-16 Files extracted during updates are not always read only
MFSA 2014-15 Miscellaneous memory safety hazards (rv:28.0 / rv:24.4)
2.24:
SeaMonkey-specific changes
The DoNotTrack and Prompt on Sanitize preferences are now kept in sync.
A pref (mailnews.p7m_external) has been added to allow users to choose an alternate application/pkcs7-mime handling.
Support for Atom Threading Extensions (RFC 4685) has been added.
Migrating profiles from Thunderbird supports the new signons file format now (support for the old format has been dropped).
Autocomplete drop-downs (e.g. used on the Location Bar and Open Location dialog) now show favicons for their entries.
The account name is now displayed in the status bar for all messages when checking mail.
IMAP alert messages now show the server of the corresponding mail account.
Newsgroup names are now searched for all search strings combined (AND-search) on the subscribe dialog.
See the changes page for a more complete overview.
Mozilla platform changes
Removed support for importing logins from the legacy signons.txt format, including the Base64 conversion (bug 717490).
Enabled support for TLS 1.2 (RFC 5246) by default (bug 861266).
Added support for the SPDY 3.1 protocol.
Added ability to reset style sheets using all:unset.
Added support for scrolled fieldsets (overflow property support, bug 261037).
Implemented allow-popups directive for iframe sandbox, enabling increased security (bug 766282).
Unprefixed CSS cursor keywords -moz-grab and -moz-grabbing (bug 880672).
Added support for ES6 generators in SpiderMonkey (blog post).
Implemented support for mathematical function Math.hypot() in ES6 (bug 896264).
Added dashed line support on Canvas (bug 768067).
Fixed Azure/Skia content rendering on Linux (bug 740200).
Fixed several stability issues.
Fixed in SeaMonkey 2.24
MFSA 2014-13 Inconsistent JavaScript handling of access to Window objects
MFSA 2014-12 NSS ticket handling issues
MFSA 2014-11 Crash when using web workers with asm.js
MFSA 2014-09 Cross-origin information leak through web workers
MFSA 2014-08 Use-after-free with imgRequestProxy and image proccessing
MFSA 2014-07 XSLT stylesheets treated as styles in Content Security Policy
MFSA 2014-05 Information disclosure with *FromPoint on iframes
MFSA 2014-04 Incorrect use of discarded images by RasterImage
MFSA 2014-03 UI selection timeout missing on download prompts
MFSA 2014-02 Clone protected content with XBL scopes
MFSA 2014-01 Miscellaneous memory safety hazards (rv:27.0 / rv:24.3)
Changelog
=========
Since 2.5.1-rc
----------------
bugfix: can't view object link in notification when an email does not have a subject.
Since 2.5.1-beta
----------------
bugfix: cannot add milestones in templates
bugfix: when adding template, after adding milestone cannot select it when adding a task
Since 2.5.0.6
----------------
bugfix: Template view broken by single quote in property name.
bugfix: when edit a template if have milestones you can't see tasks.
bugfix: don't show members that cannot be used in member selector.
Since 2.5.0.5
----------------
bugfix: Tasks grouping by dimension fixed.
Since 2.5.0.4
----------------
performance: Issue when loading persons dim.
bugfix: Imap folders are not saved when editing an email account.
bugfix: Cannot unclassify mails from classify form.
bugfix: Emessage not shown when inputing dates with incorrect format.
bugfix: Add start date to task view.
bugfix: Get tasks by range query does not include logged user's timezone.
bugfix: In task complete edition form, assigned to are not displayed correctly.
bugfix: Issue in include myself in document notifications.
bugfix: Set db charset when reconnecting in abstract db adapter.
Since 2.5.0.3
----------------
bugfix: Add attachments column in queued_emails in upgrade scripts.
bugfix: Set db charset when reconnecting in abstract db adapter.
Since 2.5.0.2
----------------
bugfix: Render member selectors with preloaded member info.
bugfix: Order by name doesn't work on object list.
bugfix: People widget only display users.
Since 2.5.0.1
----------------
bugfix: on mysql 5.6 have_innodb variable is deprecated
Since 2.5
----------------
feature: Allow to configure dashboard widget position and order for each user.
feature: Allow to configure default dashboard widget position and order for all users.
feature: Comments dashboard widget.
feature: Email dashboard widget.
feature: choose to filter calendar widget or not.
feature: choose the user to filter the tasks widget.
bugfix: when add a timeslot by clock on tasks update the percent complete.
bugfix: if a file doesn't have revision when classify create one.
bugfix: several minor fixes of undefined variables, missing langs, etc.
bugfix: when disabling or reactivating users from company view, users list is not reloaded.
bugfix: member selector displayed wrong data
bugfix: on task add/edit view, assignee combo displayed wrong data
bugfix: subscribers and invited people were not shown correctly
bugfix: encoding when receiving emails
bugfix: when editing a classified timeslot, its context was not shown
bugfix: in file upload, the name is not changed if a new name is entered
bugfix: missing langs and sql changes for email user config options
Since 2.5-rc
----------------
bugfix: general search form submitted by enter key doesn't work in Google Chrome
bugfix: links are now saved as such when using WYSIWYG
bugfix: primary-breadcrumb show exact context
bugfix: mysql transaction problem when sending emails without using a cronjob
bugfix: when making a new installation, users were not shown by default
Since 2.5-beta
----------------
bugfix: if a file doesn't have a revision, when classifying an email create one.
bugfix: when adding a timeslot by clock on tasks, task progress bar was not updated correctly.
bugfix: fixed custom reports using boolean conditions in false.
bugfix: problems with paging on the overview list.
bugfix: on activity widget, when clicking on a member, change dimension.
* Applied patch #9 (Crash when more than one authplugin are selected)
by Frederic Bourgeois
* Added feature to allow Facebook mock ajax (request #6) by Jason Spiro
* Added contrib dir
* Added a new html & css validated html template in contrib (request #3).
By Chris Peschke
* Converted iso-8859 message files to utf-8 (bug #86). Suggested
by Fred Ulisses Maranhao
* Fixed Error reading Content-Length (bug #84). By Carlos Soto
* Fixed compilation error BSD due lack of string.h when using
memcpy() (bug #75). By Alexander Hornung
* Fixed exceptioniplist case sensitivity (bug #11). By Mark J Hewitt
* Fixed accept-encoding support for new tokens (bug #13). By userquin
* Applied patch 3438750 (GCC 4.4 and 4.6 compatibility) by Mathieu PARENT
* Applied patch 3438749 (French translation update) by Mathieu PARENT
* Applied patch 3418297 (Set proxy timeout in dansguardian.conf)
by Frederic Bourgeois
* Applied patch 3419088 (login/password in URL is dropped) by Mathieu PARENT
* Applied patch 3419089 ("Expect" header should be dropped) by Mathieu PARENT
* Applied patch 3438751 (Fix queue handling in OptionContainer)
by Mathieu PARENT
* Applied patch 3515167 (Fix digest identication) by Frederic Bourgeois
* Fixed GCC warnings
* LFS review in String.cpp (requires different arch review yet)
Previous release notes seem to be lost - the build structure changed, and:
Both the main configuration file and the filter group configuration
file(s) have changed since the last stable release. If you try
to re-use the configuration from an existing copy of 2.8.0.6 or
earlier, the daemon will not start. On the other hand, list
files (phrase lists, domain lists, etc.) have not changed format,
and should largely "just work". There have been improvements to
the default list files, though, so again it is recommended that
you start from the new version and re-do any customisations.
*) SECURITY: CVE-2014-0098 (cve.mitre.org)
Clean up cookie logging with fewer redundant string parsing passes.
Log only cookies with a value assignment. Prevents segfaults when
logging truncated cookies.
*) SECURITY: CVE-2013-6438 (cve.mitre.org)
mod_dav: Keep track of length of cdata properly when removing
leading spaces. Eliminates a potential denial of service from
specifically crafted DAV WRITE requests
*) core: draft-ietf-httpbis-p1-messaging-23 corrections regarding
TE/CL conflicts.
*) mod_proxy_http: Core dumped under high load. PR 50335.
*) proxy_util: NULL terminate the right buffer in 'send_http_connect'.
*) mod_proxy: Remove (never documented) <Proxy ~ wildcard-url> syntax which
is equivalent to <ProxyMatch wildcard-url>.
*) mod_ldap: Fix a potential memory leak or corruption.
*) mod_ssl: Do not perform SNI / Host header comparison in case of a
forward proxy request.
*) mod_rewrite: Add mod_rewrite.h to the headers installed on Windows.
* Update MESSAGE to use nginx and php-fpm.
I cannot enable with apache24 (yet).
Changelog:
Version 6.0.2 March 3rd 2014
Several security fixes
Improved trash bin performance for deleting lots of files
Mobile interface improvements
Fix key problems in encryption mode in rare situations
Smaller LDAP improvements
Fix the keep-alive ping for non standard php session lifetimes
Cleanup storage table when deleting an entry
Fix compatibility with xsendfile mode
Fix file size calculation in encryption mode
Fix image previews in trash bin
Fix public upload with enabled enryption
Added APC enabled check
Correctly localise date in notification emails
Improve compatibility with some CIFS servers
Fix shared files and Gallery
Several Contacts compatibility improvements
Several Documents improvements
A lot of smaller bug fixes
Changelog:
Fixed in Firefox ESR 24.4
MFSA 2014-32 Out-of-bounds write through TypedArrayObject after neutering
MFSA 2014-31 Out-of-bounds read/write through neutering ArrayBuffer objects
MFSA 2014-30 Use-after-free in TypeObject
MFSA 2014-29 Privilege escalation using WebIDL-implemented APIs
MFSA 2014-28 SVG filters information disclosure through feDisplacementMap
MFSA 2014-27 Memory corruption in Cairo during PDF font rendering
MFSA 2014-26 Information disclosure through polygon rendering in MathML
MFSA 2014-17 Out of bounds read during WAV file decoding
MFSA 2014-16 Files extracted during updates are not always read only
MFSA 2014-15 Miscellaneous memory safety hazards (rv:28.0 / rv:24.4)
Changelog:
NEW
VP9 video decoding implemented
NEW
Mac OS X: Notification Center support for web notifications
NEW
Horizontal HTML5 audio/video volume control
NEW
Support for Opus in WebM
CHANGED
Now that spdy/3 is implemented support for spdy/2 has been removed and servers without spdy/3 will negotiate to http/1 without any penalty
DEVELOPER
Support for MathML 2.0 'mathvariant' attribute
DEVELOPER
Background thread hang reporting
DEVELOPER
Support for multi-line flexbox in layout
FIXED
Various security fixes
Fixed in Firefox 28
MFSA 2014-32 Out-of-bounds write through TypedArrayObject after neutering
MFSA 2014-31 Out-of-bounds read/write through neutering ArrayBuffer objects
MFSA 2014-30 Use-after-free in TypeObject
MFSA 2014-29 Privilege escalation using WebIDL-implemented APIs
MFSA 2014-28 SVG filters information disclosure through feDisplacementMap
MFSA 2014-27 Memory corruption in Cairo during PDF font rendering
MFSA 2014-26 Information disclosure through polygon rendering in MathML
MFSA 2014-25 Firefox OS DeviceStorageFile object vulnerable to relative path escape
MFSA 2014-24 Android Crash Reporter open to manipulation
MFSA 2014-23 Content Security Policy for data: documents not preserved by session restore
MFSA 2014-22 WebGL content injection from one domain to rendering in another
MFSA 2014-21 Local file access via Open Link in new tab
MFSA 2014-20 onbeforeunload and Javascript navigation DOS
MFSA 2014-19 Spoofing attack on WebRTC permission prompt
MFSA 2014-18 crypto.generateCRMFRequest does not validate type of key
MFSA 2014-17 Out of bounds read during WAV file decoding
MFSA 2014-16 Files extracted during updates are not always read only
MFSA 2014-15 Miscellaneous memory safety hazards (rv:28.0 / rv:24.4)
Approved by: wiz@
Upstream changes:
2.5.5
Highlights
MDL-43733 - Auto-saved responses are used when a quiz attempt is submitted automatically
MDL-27414 - Random short answer matching question type now works again (with thanks to Jean-Michel Védrine)
Functional changes
MDL-40821 - Language menu in Clean shows language used
API changes
MDL-43882 - "Time spent waiting for the database" value added to performance info
UI changes
MDL-44425 - Skydrive, Box.net and Google Docs are renamed OneDrive, Box and Google Drive respectively to reflect these remote service name changes.
Security issues
MSA-14-0004 Incorrect filtering in Quiz
MSA-14-0005 Access issue in Feedback activity
MSA-14-0006 Capability issue in Chat
MSA-14-0007 Access issue in Wiki
MSA-14-0008 Cross site scripting potential in Flowplayer
MSA-14-0009 Identity information leak in Forum and Quiz
MSA-14-0010 Identity information leak in Alfresco Repository
MSA-14-0011 Cross site request forgery potential in IMS enrolments
MSA-14-0012 Access issue in Badges
Fixes and improvements
MDL-40705 - Long course names are truncated in navigation menu
MDL-40205 - Long block titles are truncated in Clean
MDL-42882 - Performance improvement to missing root directory upgrade step
MDL-40849 - Assignment marking guide screen fixed in Clean
MDL-44217 - The link colour in Bootstrapbase (and Clean) is now WCAG compliant
MDL-44029 - Quiz user overrides no longer deleted by group event handler
MDL-44018 - Variant field of question_attempts is backed up by Moodle backup
MDL-43941 - Activity show/hide toggle fixed in hidden and orphaned sections
MDL-43306 - Backup no longer introduces duplicate gradeitem sortorders when restoring
2.5.4
Highlights
MDL-41819 - Able to edit a larger number of grades in the grader report
Functional changes
MDL-42504 - Quiz auto-save detects that the connection to the server has been lost and warns students
API changes
MDL-40741 - Behat tests adapted to Clean theme
MDL-42942 - Environmental information shown at the beginning of every Behat run
Security issues
MSA-14-0001 Config passwords visibility issue
MSA-14-0002 Group constraints lacking in "login as"
MSA-14-0003 Cross-site request forgery vulnerability in profile fields
Fixes and improvements
MDL-34182 - Invalid JSON no longer output on filepicker when repository plugins output invalid content
MDL-43367 - get_child_contexts() returns correct contexts when context path missing
MDL-42913 - Group cache works as expected
MDL-40003 - Assignment submission comments are restored
MDL-42085 - Default enrolment duration is now applied when manually enrolling a user
*) Security: a heap memory buffer overflow might occur in a worker
process while handling a specially crafted request by
ngx_http_spdy_module, potentially resulting in arbitrary code
execution (CVE-2014-0133).
Thanks to Lucas Molas, researcher at Programa STIC, Fundación Dr.
Manuel Sadosky, Buenos Aires, Argentina.
*) Feature: the "proxy_protocol" parameters of the "listen" and
"real_ip_header" directives, the $proxy_protocol_addr variable.
*) Bugfix: in the "fastcgi_next_upstream" directive.
Thanks to Lucas Molas.
*) Security: a heap memory buffer overflow might occur in a worker
process while handling a specially crafted request by
ngx_http_spdy_module, potentially resulting in arbitrary code
execution (CVE-2014-0133).
Thanks to Lucas Molas, researcher at Programa STIC, Fundación Dr.
Manuel Sadosky, Buenos Aires, Argentina.
*) Bugfix: in the "fastcgi_next_upstream" directive.
Thanks to Lucas Molas.
*) mod_ssl: Work around a bug in some older versions of OpenSSL that
would cause a crash in SSL_get_certificate for servers where the
certificate hadn't been sent.
*) mod_lua: Add a fixups hook that checks if the original request is intended
for LuaMapHandler. This fixes a bug where FallbackResource invalidates the
LuaMapHandler directive in certain cases by changing the URI before the map
handler code executes
Changes 2.4.8:
*) SECURITY: CVE-2014-0098 (cve.mitre.org)
Clean up cookie logging with fewer redundant string parsing passes.
Log only cookies with a value assignment. Prevents segfaults when
logging truncated cookies.
*) SECURITY: CVE-2013-6438 (cve.mitre.org)
mod_dav: Keep track of length of cdata properly when removing
leading spaces. Eliminates a potential denial of service from
specifically crafted DAV WRITE requests
*) core: Support named groups and backreferences within the LocationMatch,
DirectoryMatch, FilesMatch and ProxyMatch directives. (Requires
non-ancient PCRE library)
*) core: draft-ietf-httpbis-p1-messaging-23 corrections regarding
TE/CL conflicts.
*) mod_dir: Add DirectoryCheckHandler to allow a 2.2-like behavior, skipping
execution when a handler is already set.
*) mod_ssl: Do not perform SNI / Host header comparison in case of a
forward proxy request.
*) mod_ssl: Remove the hardcoded algorithm-type dependency for the
SSLCertificateFile and SSLCertificateKeyFile directives, to enable
future algorithm agility, and deprecate the SSLCertificateChainFile
directive (obsoleted by SSLCertificateFile).
*) mod_rewrite: Add RewriteOptions InheritDown, InheritDownBefore,
and IgnoreInherit to allow RewriteRules to be pushed from parent scopes
to child scopes without explicitly configuring each child scope.
*) prefork: Fix long delays when doing a graceful restart.
*) FreeBSD: Disable IPv4-mapped listening sockets by default for versions
5+ instead of just for FreeBSD 5.
*) mod_proxy_wstunnel: Avoid busy loop on client errors, drop message
IDs 02445, 02446, and 02448 to TRACE1 from DEBUG.
*) mod_remoteip: Correct the trusted proxy match test.
*) mod_proxy_fcgi: Fix error message when an unexpected protocol version
number is received from the application.
*) mod_remoteip: Use the correct IP addresses to populate the proxy_ips field.
*) mod_lua: Update r:setcookie() to accept a table of options and add domain,
path and httponly to the list of options available to set.
*) mod_lua: Fix r:setcookie() to add, rather than replace,
the Set-Cookie header.
*) mod_lua: Allow for database results to be returned as a hash with
row-name/value pairs instead of just row-number/value.
*) mod_rewrite: Add %{CONN_REMOTE_ADDR} as the non-useragent counterpart to
%{REMOTE_ADDR}.
*) WinNT MPM: If ap_run_pre_connection() fails or sets c->aborted, don't
save the socket for reuse by the next worker as if it were an
APR_SO_DISCONNECTED socket. Restores 2.2 behavior.
*) mod_dir: Don't search for a DirectoryIndex or DirectorySlash on a URL
that was just rewritten by mod_rewrite.
*) mod_session: When we have a session we were unable to decode,
behave as if there was no session at all.
*) mod_session: Fix problems interpreting the SessionInclude and
SessionExclude configuration.
*) mod_authn_core: Allow <AuthnProviderAlias>'es to be seen from auth
stanzas under virtual hosts.
*) mod_proxy_fcgi: Use apr_socket_timeout_get instead of hard-coded
30 seconds timeout.
*) mod_proxy: Added support for unix domain sockets as the
backend server endpoint
*) build: only search for modules (config*.m4) in known subdirectories, see
build/config-stubs.
*) mod_cache_disk: Fix potential hangs on Windows when using mod_cache_disk.
*) mod_ssl: Add support for OpenSSL configuration commands by introducing
the SSLOpenSSLConfCmd directive.
*) mod_proxy: Remove (never documented) <Proxy ~ wildcard-url> syntax which
is equivalent to <ProxyMatch wildcard-url>.
*) mod_authz_user, mod_authz_host, mod_authz_groupfile, mod_authz_dbm,
mod_authz_dbd, mod_authnz_ldap: Support the expression parser within the
require directives.
*) mod_proxy_http: Core dumped under high load.
*) mod_socache_shmcb.c: Remove arbitrary restriction on shared memory size
previously limited to 64MB.
*) mod_lua: Use binary copy when dealing with uploads through r:parsebody()
to prevent truncating files.
== 1.6.2 Doc Brown
* No longer replace response's body on HEAD request. Ensuring body.close will be called.
* Remove `---ssl-verify` option as EventMachine doesn't verify the certificate.
* Fix env['rack.peer_cert'] to return SSL certifcate.
== 1.6.1 Death Proof
* Regression: Default logger to STDOUT when using outside of CLI.
* Regression: Downgrade Rack required version back to 1.0 to work w/ prior Rails versions.
== 1.6.0 Greek Yogurt
* Accept absolute URL in request line, eg.: 'GET http://site.com/he/lo HTTP/1.1'.
* HEAD request no longer return a body in the response.
* No longer stop EventMachine's reactor loop unless it was started by Thin.
* Make request env keys upcasing locale-agnostic.
* Use Ruby's `Logger` for logging. [Akshay Moghe].
The logger can now be set using `Thin::Logging.logger=`.
Tracing of request is handled by a second logger, `Thin::Logging.trace_logger=`.
* Add --threadpool-size option to configure EM's thread pool size (default: 20).
* Pipelining is no longer supported.
=== raindrops 0.13.0 several minor fixes and improvements / 2014-02-18 20:59 UTC
Most notably, this release is necessary for Ruby 2.2 (dev).
Thanks to Koichi Sasada for the bug report!
Eric Wong (5):
Rakefile: remove raa_update task
last_data_recv: do not assume Unicorn includes all constants
raindrops.gemspec: add wrongdoc dev dependency
linux_inet_diag: fix Ruby 2.2 (dev) build
license: use LGPLv2.1 or later (was LGPL (2.1|3.0)-only)
Hleb Valoshka (1):
Remove Scope IDs from IPv6 addresses.
=== 2.8.1 / 2014-03-06
* 1 bug fixes:
* Run puma-wild with proper deps for prune_bundler
* 2 doc changes:
* Described the configuration file finding behavior added in 2.8.0 and how to disable it.
* Start the deployment doc
* 6 PRs merged:
* Merge pull request #471 from arthurnn/fix_test
* Merge pull request #485 from joneslee85/patch-9
* Merge pull request #486 from joshwlewis/patch-1
* Merge pull request #490 from tobinibot/patch-1
* Merge pull request #491 from brianknight10/clarify-no-config
=== 2.8.0 / 2014-02-28
* 8 minor features:
* Add ability to autoload a config file. Fixes#438
* Add ability to detect and terminate hung workers. Fixes#333
* Add booted_workers to stats response
* Add config to customize the default error message
* Add prune_bundler option
* Add worker indexes, expose them via on_worker_boot. Fixes#440
* Add pretty process name
* Show the ruby version in use
* 7 bug fixes:
* Added 408 status on timeout.
* Be more hostile with sockets that write block. Fixes#449
* Expect at_exit to exclusively remove the pidfile. Fixes#444
* Expose latency and listen backlog via bind query. Fixes#370
* JRuby raises IOError if the socket is there. Fixes#377
* Process requests fairly. Fixes#406
* Rescue SystemCallError as well. Fixes#425
* 4 doc changes:
* Add 2.1.0 to the matrix
* Add Code Climate badge to README
* Create signals.md
* Set the license to BSD. Fixes#432
* 14 PRs merged:
* Merge pull request #428 from alexeyfrank/capistrano_default_hooks
* Merge pull request #429 from namusyaka/revert-const_defined
* Merge pull request #431 from mrb/master
* Merge pull request #433 from alepore/process-name
* Merge pull request #437 from ibrahima/master
* Merge pull request #446 from sudara/master
* Merge pull request #451 from pwiebe/status_408
* Merge pull request #453 from joevandyk/patch-1
* Merge pull request #470 from arthurnn/fix_458
* Merge pull request #472 from rubencaro/master
* Merge pull request #480 from jjb/docs-on-running-test-suite
* Merge pull request #481 from schneems/master
* Merge pull request #482 from prathamesh-sonpatki/signals-doc-cleanup
* Merge pull request #483 from YotpoLtd/master
=== 2.7.1 / 2013-12-05
* 1 bug fix:
* Keep STDOUT/STDERR the right mode. Fixes#422
=== 2.7.0 / 2013-12-03
* 1 minor feature:
* Adding TTIN and TTOU to increment/decrement workers
* N bug fixes:
* Always use our Process.daemon because it's not busted
* Add capistrano restart failback to start.
* Change position of `cd` so that rvm gemset is loaded
* Clarify some platform specifics
* Do not close the pipe sockets when retrying
* Fix String#byteslice for Ruby 1.9.1, 1.9.2
* Fix compatibility with 1.8.7.
* Handle IOError closed stream in IO.select
* Increase the max URI path length to 2048 chars from 1024 chars
* Upstart jungle use config/puma.rb instead
0.12.0 (February 9th 2014)
FIX#1578 Fix latvian translations (@graudeejs)
FIX#1576 incorrect nl.yml translations (@fevers)
FIX#1564 do not reload apps with disabled or absent :reload flag (@ujifgc)
FIX#1571 Allow for url generation to accept stringified keys (@jsmpereira)
NEW #1570 add custom index option for form_for abstract form helper (@graudeejs)
FIX#1567 Add :app option to the component generator (@namusyaka)
FIX#1563 Fix behavior of content_tag when use with content that is not a string (@tyabe)
NEW #1422 allow options Hash in protect_from_csrf (@ujifgc)
0.12.0.rc3 (January 20th 2014)
FIX resolve_template should respect :views option (@ujifgc)
FIX#1547 Rename `showexceptions.rb` to `show_exceptions.rb` (@namusyaka)
NEW #1551 Introduce #default method to set application options (@ujifgc)
FIX#1553 Chinese time translations (@gokure)
FIX#1556 German translations (@Signum)
FIX#1555 Fix a problem the before/after filters (@namusyaka)
FIX#1550 Shove LOADING/RELOADING to devel log level
FIX#1445 Drop `PADRINO_ENV` in favour of `RACK_ENV` for further compatibility (@dariocravero)
0.12.0.rc2 (January 5th 2014)
FIX development dependency for padrino-gen (@namusyaka)
FIX#1520 Skip loading models for sequel migration tasks (@ujifgc)
FIX#1493 make admin aware of uri_root (@ujifgc)
NEW #854 allow -a master to rename admin path (@ujifgc)
FIX Get tests passing again on rubinius (@ujifgc)
FIX#1545 Don't raise on protect_from_csrf without sessions (@skade)
FIX#1546 Silence deprecation warnings for File.exists? (@fj)
REMOVE #1516 support for TestSpec component from generator (@ujifgc)
0.12.0.rc1 (December 31st 2013)
FIX#1421 Prevent double-escaped HTML in simple_format (@inkstak)
NEW #1424 Adds task generator for creating new task files (@namusyaka)
FIX#1423 Adds MIT license to gemspec (@ujifgc)
FIX#1121 Modify the encoding of crypted_password (@namusyaka)
NEW #1432 Rewritten Code Reloading (@ujifgc)
FIX#1428 logger constants to match stdlib (@spariev)
FIX#775 track I18n locale files properly (@ujifgc)
FIX#1434 additional fixes for slim templates (@minad)
FIX#1431 incorrect behavior when using content_tag with block (@namusyaka)
FIX#1435 broken slim templates (@namusyaka)
FIX AS4.1 constantize behavior compatibility (@ujifgc)
NEW #1436 support rails-style attribute hash of select options (@ujifgc)
NEW support disabled_options key for select_tag (@ujifgc)
FIX no longer monkeypatch colors onto string (@ujifgc, @nesquena)
FIX#1442 use `=` instead of `-` in slim and haml templating
NEW #1441 cleanup template handling logic (@ujifgc, @namusyaka)
FIX Cleanup file loading logic (@ujifgc)
FIX#1443 Don't step over :session_id setting on admin apps (@dariocravero)
NEW Modified `padrino start` to take an extra `–options` (`-O`) parameter (@dariocravero)
NEW #1018 Replaces Padrino::Cache::Store with Moneta (@minad)
NEW #1455 Steak generator written for acceptance tests (@eturk, @namusyaka)
FIX Better error generation for forms (@ujifgc)
FIX html_safe in labeled group (@ujifgc)
NEW #1452 Allow padrino start to take handler specific options
FIX#1462 cache content_type (@ujifgc)
FIX#1466 Change accepts to empty array to fix latest sinatra
FIX#1457 Major helpers cleanup (@ujifgc)
NEW #1405 Params is now converted to `HashWithIndifferentAccess` (@Ortuna)
FIX#1391 Skip path_traversal protection (@namusyaka)
NEW #1471 allow configuring codes of cascade apps (@ujifgc)
NEW #1477 Add :as option to form_for helper (@graudeejs)
FIX#1481 incorrect namespace of #named_routes (@namusyaka)
FIX Disambiguate the behavior of `url` (@namusyaka)
FIX#1461 Allow to render template with layout that using other template engine (@namusyaka)
NEW #767 introduces App.view_path and App.layout_path (@ujifgc)
FIX#1488 plugin generator url path to github (@bolshakov)
FIX#915 use app.root when mounting if available (@ujifgc)
FIX Allow to use extension with layout method. (@namusyaka)
NEW #1414 drop ruby 18mode, liberate ActiveSupport
NEW #711 Verify render with block now works as expected (@ujifgc)
NEW #1504 allow partial with block (@ujifgc)
FIX#1507 patch jruby utf-8 method naming (@ujifgc)
FIX#1505 Remove charset from json mimetype, fix sinatra edge (@namusyaka)
FIX#1513 Extracting logic to methods to improve readability (@scudelletti)
FIX#1517 correctly set a name of mounted application (@ujifgc)
NEW #1518 Add :flush option to content_for (@namusyaka)
FIX#1523 Add Rakefile tasks to the component generator (@tyabe)
FIX#1526 options on ActiveRecord version 3 (@tyabe)
NEW #1528 Allow asset_folders to be configured in settings
FIX#1529 double escaping of link urls (@ujifgc)
FIX#1532 allow asset_path with no kind (@ujifgc)
FIX#1535 rebase string urls to uri_root (@ujifgc)
NEW #1539 Enable :except option to :protect_from_csrf (@namusyaka)
FIX#1540 generator should abort if constant name already exists (@namusyaka)
NEW #922 resolve templates relative to controller name (@ujifgc)
NEW #1541 Reimplement authenticity token logic (@namusyaka)
=== 2.9.4 / 2014-02-10
* Bug fixes
* Improve proxy escaping from 2.9.2. Pull request #59 by Mislav Marohnić.
=== 2.9.3 / 2014-02-06
* Bug fixes
* Fix breakage in 2.9.2 for users without proxies. Pull request #56 by
Yoshihiro TAKAHARA (merged), #57 by ChuckLin, #58 by Kenny Meyer.
=== 2.9.2 / 2014-02-05
* Bug fixes
* Special characters in proxy passwords are now handled correctly. Issue
#48 by Mislav Marohnić. Pull request #54 by Juha Kajava
=== 2.9.1 / 2014-01-22
* Bug fixes
* Added license to gemspec. Issue #47 by Benjamin Fleischer
* Set Net::HTTP#keep_alive_timeout when supported by ruby. Pull request #53
by Dylan Thacker-Smith.
* The backtrace is preserved for errors in #reset to help with debugging.
Issue #41 by Andrew Cholakian.
3.2.15 (7 March 2014)
* Support &.foo when the parent selector has a newline followed by a comma.
3.2.14 (24 January 2014)
* Don't crash when parsing a directive with no name in the indented syntax.
* Clean up file paths when importing to avoid errors for overlong path names.
* Parse calls to functions named true, false, and null as function calls.
* Don't move CSS @imports to the top of the file unless it's necessary.
3.2.13 (19 December 2013)
* Numbers returned by user-defined functions now trigger division, just like
numbers stored in variables.
* Support importing files in paths with open brackets.
* Fix sass-convert's handling of rules with empty bodies when converting from
CSS.
* Fix CSS imports using url() with a quoted string and media queries.
3.2.12 (4 October 2013)
* Add a couple missing requires, fixing some load errors, especially when
using the command-line interface.
* Tune up some heuristics for eliminating redundant generated selectors. This
will prevent some selector elimination in cases where multi-layered @extend
is being used and where it seems intuitively like selectors shouldn't be
eliminated.
3.2.11 (27 September 2013)
* Fix @extend's semantics with respect to pseudo-elements. They are no longer
treated identically to pseudo-classes.
* A more understandable error is now provided when the -E option is passed to
the Sass command line in ruby 1.8
* Fixed a bug in the output of lists containing unary plus or minus operations
during sass <=> scss conversion.
* Avoid the IE7 content: counter bug with content: counters as well.
* Fix some thread-safety issues.
