to power Django Channels.
It supports automatic negotiation of protocols; there's no need for URL
prefixing to determine WebSocket endpoints versus HTTP endpoints.
Ignore auth-nocache for auth-user-pass if auth-token is pushed
crypto: Enable SHA256 fingerprint checking in --verify-hash
copyright: Update GPLv2 license texts
auth-token with auth-nocache fix broke --disable-crypto builds
OpenSSL: don't use direct access to the internal of X509
OpenSSL: don't use direct access to the internal of EVP_PKEY
OpenSSL: don't use direct access to the internal of RSA
OpenSSL: don't use direct access to the internal of DSA
OpenSSL: force meth->name as non-const when we free() it
OpenSSL: don't use direct access to the internal of EVP_MD_CTX
OpenSSL: don't use direct access to the internal of EVP_CIPHER_CTX
OpenSSL: don't use direct access to the internal of HMAC_CTX
Fix NCP behaviour on TLS reconnect.
Remove erroneous limitation on max number of args for --plugin
Fix edge case with clients failing to set up cipher on empty PUSH_REPLY.
Fix potential 1-byte overread in TCP option parsing.
Fix remotely-triggerable ASSERT() on malformed IPv6 packet.
refactor my_strupr
Fix 2 memory leaks in proxy authentication routine
Fix memory leak in add_option() for option 'connection'
Ensure option array p[] is always NULL-terminated
Fix a null-pointer dereference in establish_http_proxy_passthru()
Prevent two kinds of stack buffer OOB reads and a crash for invalid input data
Fix an unaligned access on OpenBSD/sparc64
Missing include for socket-flags TCP_NODELAY on OpenBSD
Make openvpn-plugin.h self-contained again.
Pass correct buffer size to GetModuleFileNameW()
Log the negotiated (NCP) cipher
Avoid a 1 byte overcopy in x509_get_subject (ssl_verify_openssl.c)
Skip tls-crypt unit tests if required crypto mode not supported
openssl: fix overflow check for long --tls-cipher option
Add a DSA test key/cert pair to sample-keys
Fix mbedtls fingerprint calculation
mbedtls: fix --x509-track post-authentication remote DoS (CVE-2017-7522)
mbedtls: require C-string compatible types for --x509-username-field
Fix remote-triggerable memory leaks (CVE-2017-7521)
Restrict --x509-alt-username extension types
Fix potential double-free in --x509-alt-username (CVE-2017-7521)
Fix gateway detection with OpenBSD routing domains
new: allow components to pass WebSocket/RawSocket options
fix: register/subscribe decorators support different URI syntax from what session.register and session.subscribe support
new: allow for standard Crossbar a.c..d style pattern URIs to be used with Pattern
new: dynamic authorizer example
new: configurable log level in ApplicationRunner.run for asyncio
fix: forward reason of hard dropping WebSocket connection in wasNotCleanReason
fix: asyncio - remove the hacks for "simulating" chained futures (no longer works - cpy36 has native code for future)
new: run CI on Python 3.5 and 3.6
Bugfixes:
spawnProcess no longer opens an unwanted console on Windows
The transition to the hyperlink package adds IPv6 support to twisted.python.url.URL. This is now deprecated and new code should use hyperlink directly
twisted.logger now buffers only 200 events by default (reduced from 65536) while waiting for observers to be configured.
The transition of twisted.python.url to using the hyperlink package enables a URL.click() with no arguments (or 0-length string argument) to resolve dot segments in the path.
twisted.protocols.finger now works on Python 3.
TLS-related tests now pass when run with OpenSSL 1.1.0. This makes tests pass again on macOS and Windows, as cryptography 1.8 and later include OpenSSL 1.1.0.
UNIX socket endpoints now process all messages from recvmsg's ancillary data via twisted.internet.unix.Server.doRead/twisted.internet.unix.Client.doRead, while discarding and logging ones that don't contain file descriptors.
twisted.internet.endpoints.HostnameEndpoint and twisted.web.client.Agent work again with reactors that do not provide IReactorPluggableNameResolver. This undoes the changes that broke downstream users such as treq.testing. Note that passing reactors that do not provide IReactorPluggableNameResolver to either is deprecated.
A Python 3 Perspective Broker server which receives a remote call with keyword arguments from a Python 2 client will now decode any keys which are binary to strings instead of crashing. This fixes interoperability between Python 2 Buildbot clients and Python 3 Buildbot servers.
twisted.internet._threadedselect now works on both Python 2 and 3.
twisted.internet.interfaces.IResolverSimple implementers will now always be passed bytes, properly IDNA encoded if required, on Python 2. On Python 3, they will now be passed correctly IDNA-encoded Unicode forms of the domain, taking advantage of the idna library from PyPI if possible. This is to avoid Python's standard library (which has an out of date idna module) from mis- encoding domain names when non-ASCII Unicode is passed to it.
Note: CVE-2017-7692 is already fixed by 1.4.23pre14605nb1.
- compose_send hook now has $draft flag in hook arguments
- Fixed insufficient sendmail command argument escaping (thanks
to Mitchel Sahertian, Beyond Security/Dawid Golunski and Filippo
Cavallarin for bringing this to our attention). [CVE-2017-7692]
- Upgraded preferences for the delete_move_next plugin. Automatic
user preference updates are included, but note that if your
installation is new, or all user prefs have been converted from
"on"/"off" to 0/1 then you can add the following to SquirrelMail's
config/config_local.php to avoid convertign legacy values over and over:
$do_not_convert_delete_move_next_legacy_preferences = TRUE;
- Added ability to control the display of the "Check Spelling"
button provided by the squirrelspell plugin, which allows
administrators to offer this plugin but keep it out of the way
for users who do not want it. Put sqspell_show_button=0 in
default preferences if it should be hidden by default
## 5.0.1
Released on May 3, 2017
([diff](https://github.com/haml/haml/compare/v5.0.0...v5.0.1)).
* Fix parsing attributes including string interpolation. [#917](https://github.com/haml/haml/pull/917) [#921](https://github.com/haml/haml/issues/921)
* Stop distributing test files in gem package and allow installing on Windows.
* Use ActionView's Erubi/Erubis handler for erb filter only on ActionView. [#914](https://github.com/haml/haml/pull/914)
## 5.0.0
Released on April 26, 2017
([diff](https://github.com/haml/haml/compare/4.0.7...v5.0.0)).
Breaking Changes
* Haml now requires Ruby 2.0.0 or above.
* Rails 3 is no longer supported, matching the official
[Maintenance Policy for Ruby on Rails](http://weblog.rubyonrails.org/2013/2/24/maintenance-policy-for-ruby-on-rails/).
(Tee Parham)
* The `haml` command's debug option (`-d`) no longer executes the Haml code, but
rather checks the generated Ruby syntax for errors.
* Drop parser/compiler accessor from `Haml::Engine`. Modify `Haml::Engine#initialize` options
or `Haml::Template.options` instead. (Takashi Kokubun)
* Drop dynamic quotes support and always escape `'` for `escape_html`/`escape_attrs` instead.
Also, escaped results are slightly changed and always unified to the same characters. (Takashi Kokubun)
* Don't preserve newlines in attributes. (Takashi Kokubun)
* HTML escape interpolated code in filters.
[#770](https://github.com/haml/haml/pull/770)
(Matt Wildig)
:javascript
#{JSON.generate(foo: "bar")}
Haml 4 output: {"foo":"bar"}
Haml 5 output: {"foo":"bar"}
Added
* Add a tracing option. When enabled, Haml will output a data-trace attribute on each tag showing the path
to the source Haml file from which it was generated. Thanks [Alex Babkin](https://github.com/ababkin).
* Add `haml_tag_if` to render a block, conditionally wrapped in another element (Matt Wildig)
* Support Rails 5.1 Erubi template handler.
* Support Sprockets 3. Thanks [Sam Davies](https://github.com/samphilipd) and [Jeremy Venezia](https://github.com/jvenezia).
* General performance and memory usage improvements. (Akira Matsuda)
* Analyze attribute values by Ripper and render static attributes beforehand. (Takashi Kokubun)
* Optimize attribute rendering about 3x faster. (Takashi Kokubun)
* Add temple gem as dependency and create `Haml::TempleEngine` class.
Some methods in `Haml::Compiler` are migrated to `Haml::TempleEngine`. (Takashi Kokubun)
Fixed
* Fix for attribute merging. When an attribute method (or literal nested hash)
was used in an old style attribute hash and there is also a (non-static) new
style hash there is an error. The fix can result in different behavior in
some circumstances. See the [commit message](e475b015d3)
for detailed info. (Matt Wildig)
* Make escape_once respect hexadecimal references. (Matt Wildig)
* Don't treat the 'data' attribute specially when merging attribute hashes. (Matt Wildig and Norman Clarke)
* Fix #@foo and #$foo style interpolation that was not working in html_safe mode. (Akira Matsuda)
* Allow `@` as tag's class name. Thanks [Joe Bartlett](https://github.com/redoPop).
* Raise `Haml::InvalidAttributeNameError` when attribute name includes invalid characters. (Takashi Kokubun)
* Don't ignore unexpected exceptions on initializing `ActionView::OutputBuffer`. (Takashi Kokubun)
3.1.2
* Removed css builder
3.1.3
* suppress warning while undefining object_id
3.1.4
* explicit blank content will not generate a self-closing tag
3.2.0
* Check if method was already cached before method definition.
* Change to String, raise_error last argument accept String
* Add test
* Cleanup of code
* Make changes to add option
* Update lib/builder/xmlbase.rb
* Cleaned up test case.
* Cleaned up explicit nil code a wee bit.
* Remove extraneous white spaces.
* Convert readme from rdoc to markdown.
* Tweek readme.
* Add us-ascii encoding declaration.
* Use old style hash literals for 1.8.x compatibility.
* Add # encoding: iso-8859-1 comment
* Add single quote attribute option.
* Update changes.
* More rdoc fixes.
* Handle possible IOError
* avoid crashing on Ruby 2.3.1 when fd is closed
* Add license info to the gemspec.
* Add test environment.
* Initial move to bundler and travis testing.
* Update readme with travis, code climate and coveralls
* Fix invalid or closed file descriptor issues on JRuby
* Modernize copyright/documentation
* Fix incorrect development dependency on ffi
* Update homepage = guard
* Update badge links for guard org
* Add JRuby and Rubinius cases on Travis CI.
* Delete watchers that received the "IN_IGNORED" flag
* Made size more accurately allocated.
* Fix for breaking change for Ruby and runtime dependency version condition.
* Remove stuff that doesn't work on older rubies.
* Remove wrong comment for utopia.gemspec from Gemfile.
* Fix to suppress warning when "gem build rb-inotify.gemspec" (#70)
v4.7.2 2017/06/20
Avoid defining methods at runtime whenever a processing method is invoked,
which means that Ruby can keep its method cache, instead of having to clear it
on each processing invocation (thanks to @printercu).
v4.7.1 2017/06/15
Fix errors when calling MiniMagick::Image.open with URLs like
https://pbs.twimg.com/media/DCOD2DXVwAI4xsL.jpg:large, where the : would get
included in the file extension and cause errors with some ImageMagick commands
due to : being a special character to ImageMagick.
Changes are too many to write here, please refer
<https://github.com/jekyll/jekyll/releases> in detail.
* Upgrade to Liquid v4.
* Add support for TSV (Tab-Separated Values data) files.
* Add a template for custom 404 page.
* Documentation improvements.
TeXstudio 2.12.4
----------------
- detect definition of tex counts using \newcount
- improve config dialog layout
- make todo comment detection configurable
- show frame titles in structure view
- support table alignment in IEEEeqnarray, xtabular and mpxtabular
- table alignment: fix aligning of empty cols
- table alignment: place \\ if last columns is empty
- warn if \begin{column} is used outside columns-env
- workaround for not interpreting $ inside sweave \Sexpr{}
- option to deactivate interperation of command definition in magic comments
- remove pdf viewer subtypes from "Default Viewer" config. PDF viewer
subtypes should be selected in "PDF Viewer".
- increase the maximal resolution for pdf rendering
- toolbar for embedded viewer can not turned-off anymore
- show shortcuts in tooltips (can be deactivated in the options)
- pass non-breaking space to grammar check
- \item completion no adds a space
- fix highlighting of current section in structure
- fix delays when typing _abc
- fix bug in log parser: wrong filename if empty brackets () occur in text
- fix word repetition erro on non-breaking space (~)
- fix file detection in latex/include file
- fix width of side panel not saved
- fix ampersand in in recent session names
- fix parsing of \RequirePackage in style files if the argument is
completed on the same line
- fix misinterpretation of closing brace if extra opening brace is used
over multilines
- fix jumping to first page when changing magnifier/hand in pdfviewer
- fix spelling error on words followed by
- show option --version when calling with --help
- fix link to LibreOffice dictionaries
- fix crash on pressing Esc in options
- fix entering persian half-space letter
- fix \maketitle completion
- fix shortcut context on OSX
- fix robustcommand definition
- use $* instead of $@ in BUILD.sh
- add needspace.cwl
- update some cwls
- add turkish translation
TeXstudio 2.12.2
----------------
- PDF shortcuts are now changable
- Support LanguageTool json API (needed for LanguageTool > 3.5)
- slightly improved layout of config dialog
- improved detection of stdout and stderr redirection
- fix: duplicate side panel icons
- fix: togglefullscreen from maximised and in reverse
- fix: don't try to call bibtex/biber if there are no bibtex-files
- fix: detection of programs
- fix: avoid problems if check latex is called without open documents
TeXstudio 2.12.0
----------------
- improved user interface: optimized layout, some new icons, some
changes of color
- warn if file-saving fails
- cwl-based highlighting of todo-like commands
- partly support \todo commands spanning multiple lines (starting
line is considered for highlighting and structure entry)
- partly support highlighting of multi-line titles: first line is
highlighted
- move cursor to context in line when clicking on log entry
- add "Move all to other view" to editor tabs context menu
- add shortcut Ctrl+Alt+X to open the current pdf in the external viewer
- open the annotation dialog by double-clicking on an annotation in the list
- indicate LanguageTool server in tooltip
- indicate cursor RTL state in status bar
- build commands can be edited in non-advanced mode
- auto user commands on single argument math commands e.g. \overbrace{abc}
- support \input of PGF/TikZ files in graphics wizard
- support fix %BEGIN_FOLD in .rnw files
- improved highlighting for pweave and sweave
- improved tooltips on structure entries
- improved text completion: support compound words, apostrophe, subscript
in braces, words with underscores
- Parenthesis -> Select Inner/Outer work also when the cursor is not next
to a parenthesis but inside
- don't clear highlights of search in pdf after timeout
- revert to pre 2.11.0 save method on windows because the new QSaveFile
has problems with Dropbox folders
- option to disable safe writing of files (using QSaveFile)
- option to disable showing logfile/error list in case of compile errors
- option to deactivate all reactions to external file changes
- option to control the triple click behavior
- additional shortcuts with Tab, Backspace, Del in shortcut options
- portable version does now store all settings in a subfolder "config"
- improved automatic handling of hg version information (relevant
when building from source tar)
- improved handling of cwl dublets
- use Ctrl+Space for completion on OS X (was Cmd+Space which conflicts
with Spotlight search)
- deprecate command line option --ini-file FILE in favor of --config DIR
- deprecate command line option --master in favor of --root
- remove View -> Align Windows (obsolete because of the embedded viewer)
- remove old toolbox style of side panel
- fix crash (newenv without any arguments)
- fix freeze when parsing incorrect \texorpdfstring with incorrect arguments
- fix label detection in glossaries.cwl
- fix: automatically run bibliography if there is no bbl file
- fix: "Close last open environment" works now also for environments
opened on the same line
- fix: hg version comparision assumed 'larger' if the version could
not be determined
- fix: do not lose focus to editor for "Find in PDF"
- fix grammar check on words in text arguments
- fix addchap/addpart entries not recognized as structure elements
- fix incorrect double-click and drag behavior
- fix issues with not-updated bookmarks
- fix math hover preview in subfile
- fix "Tab or Indent Selection"
- fix detection of MikTeX 64bit
- fix build with phonon
- improved some cwl files
TeXstudio 2.11.2
----------------
- major performance speedup, in case some default section commands were
not defined in any used package
- speed up pasting into large documents (factor 100x)
- add comment toggle
- improved search panel layout
- improved bracket detection for \todo highlighting
- improved parsing of section titles
- added shorter auto-save intervals (1 min, 2 min)
- detection of user-local installation of MikTeX
- cwl-format: suffix %plain disables possible semantics associated with
an argument name
- cwl-format: suffix %labeldef for definition of labels
- cwl-format: %suffix notation takes precedence over detection by argument
name
- cwl-format: allow 'key' to be used in label if #l is set
- replace babel german by ngerman in presentation wizard
- highlight cursorEnums in script
- support reading an application style sheet from stylesheet.qss
- fix crash on qt4 if update check is sucessful
- fix: auto-indent
- fix: make insertion of tabs work with cursor mirrors
- fix: verbatim setting for \verb|abc|
- fix: update of save icon after SaveAll
- fix: dictionaries in extracted .oxt files not recognized
- fix: replace with regexp containing lookahead
- fix: keep indentation when using the graphics wizard
- fix: quote replacement on formerly hidden child documents
- fix: do not interpret double backslash within braces as column end in
tabular environment
- fix: show a warning if file could not be saved
- fix: correctly handle optional arguments in command definitions
- fix: handling of \let arguments
- fix: spellchecking of words with apostrophe
- fix: visibility of option for system theme icons on Linux
- fix: scripting: cursor.movePostition(n, Left/Right) across empty lines
and beyond end of file
- fix: running scripts from the macro window
- fix: mixture of zoom and scroll on ctrl+mouse wheel
- fix: scrreprt detection
- fix: editor font rendering in case of UI scaling
- fix: argument scanning when option contain key/val pairs
- fix: editor hiding when updating a windowed pdf viewer which was enlarged
before changing to windowed mode
- fix: repetition checking for words followed by colon
- fix: position of completer when competion words become very large
- fix: freeze while typing \texorpdfstring
- fix: script error on editor.search with options and callback
- fix: regExp replace in multi doc search
## 4.0.0
### Changed
* Render an opaque internal error by default for non-Liquid::Error (#835) [Dylan Thacker-Smith]
* Ruby 2.0 support dropped (#832) [Dylan Thacker-Smith]
* Add to_number Drop method to allow custom drops to work with number filters (#731)
* Add strict_variables and strict_filters options to detect undefined references (#691)
* Improve loop performance (#681) [Florian Weingarten]
* Rename Drop method `before_method` to `liquid_method_missing` (#661) [Thierry Joyal]
* Add url_decode filter to invert url_encode (#645) [Larry Archer]
* Add global_filter to apply a filter to all output (#610) [Loren Hale]
* Add compact filter (#600) [Carson Reinke]
* Rename deprecated "has_key?" and "has_interrupt?" methods (#593) [Florian Weingarten]
* Include template name with line numbers in render errors (574) [Dylan Thacker-Smith]
* Add sort_natural filter (#554) [Martin Hanzel]
* Add forloop.parentloop as a reference to the parent loop (#520) [Justin Li]
* Block parsing moved to BlockBody class (#458) [Dylan Thacker-Smith]
* Add concat filter to concatenate arrays (#429) [Diogo Beato]
* Ruby 1.9 support dropped (#491) [Justin Li]
* Liquid::Template.file_system's read_template_file method is no longer passed the context. (#441) [James Reid-Smith]
* Remove support for `liquid_methods`
* Liquid::Template.register_filter raises when the module overrides registered public methods as private or protected (#705) [Gaurav Chande]
### Fixed
* Fix map filter when value is a Proc (#672) [Guillaume Malette]
* Fix truncate filter when value is not a string (#672) [Guillaume Malette]
* Fix behaviour of escape filter when input is nil (#665) [Tanel Jakobsoo]
* Fix sort filter behaviour with empty array input (#652) [Marcel Cary]
* Fix test failure under certain timezones (#631) [Dylan Thacker-Smith]
* Fix bug in uniq filter (#595) [Florian Weingarten]
* Fix bug when "blank" and "empty" are used as variable names (#592) [Florian Weingarten]
* Fix condition parse order in strict mode (#569) [Justin Li]
* Fix naming of the "context variable" when dynamically including a template (#559) [Justin Li]
* Gracefully accept empty strings in the date filter (#555) [Loren Hale]
* Fix capturing into variables with a hyphen in the name (#505) [Florian Weingarten]
* Fix case sensitivity regression in date standard filter (#499) [Kelley Reynolds]
* Disallow filters with no variable in strict mode (#475) [Justin Li]
* Disallow variable names in the strict parser that are not valid in the lax parser (#463) [Justin Li]
* Fix BlockBody#warnings taking exponential time to compute (#486) [Justin Li]
