1 Changes in libsoup from 2.37.3 to 2.37.4:
3 * SoupMessage now has a "network-event" signal that can be
4 monitored for information about DNS, proxy lookup, TCP
5 connections, and TLS handshakes. [Dan]
7 * The HTTP header parsing code now avoids hitting
8 g_return_if_fails() (and returns an error instead) in a few
9 cases of seriously-invalid headers. [#666316, Simon
12 * POSTs and other non-idempotent requests are now always sent
13 on newly-created connections. You can also force this
14 behavior on other messages by setting the
15 SOUP_MESSAGE_NEW_CONNECTION flag. [#578990, Dan]
17 * Server-closed idle connections are now detected ahead of
18 time on Windows, preventing occasional spurious "Connection
19 terminated unexpectedly" errors. (This had been fixed on
20 UNIX since 2.28, but the earlier fix didn't work with
21 WinSock.) [#578990, Dan]
23 * Plugged a leak in SoupRequestHTTP. [#667099, Xan]
25 Changes in libsoup from 2.37.2 to 2.37.3:
27 * Now requires glib 2.31
29 * Simplified SoupHTTPInputStream and SoupRequestHTTP, allowing
30 related simplifications in WebKit's ResourceHandleSoup. This
31 is an ABI-incompatible change, but SoupHTTPInputStream is an
32 unstable API. [#663451, Dan]
34 * Fixed a bug that caused the SOUP_MESSAGE_CERTIFICATE_TRUSTED
35 flag to always be cleared, causing epiphany to claim all
36 https pages were untrusted. [#665182, Dan]
38 * Fixed some bugs in the handling of SoupSession:http-aliases
39 and SoupSession:https-aliases.
41 * Fixed handling of ACLOCAL_FLAGS [#641470, Craig Keogh]
43 * Fixed SoupContentDecoder's "ignore Content-Encoding: gzip
44 because the server didn't actually mean it" hack to handle
47 * Clarified the documentation on SoupSession:ssl-strict
50 Changes in libsoup from 2.37.1 to 2.37.2:
52 * Fixed up the output of SoupDirectoryInputStream, thus
53 improving the display of local directories in WebKit-based
54 browsers. [#662266, Sergio]
56 * Fixed a bug introduced in 2.37.1 that caused some cancelled
57 SoupMessages to be leaked. [#662847, Sergio]
59 * Added new SoupSession properties "http-aliases" and
60 "https-aliases" that allow you to configure more explicitly
61 what URL protocols are treated as aliases for http (eg,
62 "dav:", "webcal:", etc), and which should be recognized as
63 meaning something else, (eg, "ftp:") [Dan]
65 * Added soup_session_would_redirect() and
66 soup_session_redirect_message(), to help users that want to
67 handle some or all redirects themselves. Added
68 soup_message_set_redirect() to make it easier to return
69 redirection responses from a SoupServer. [Dan]
71 * Added the SoupSession "use-thread-context" property, which
72 tells it to use GMainContexts in a gio-compliant way (and in
73 particular, allows having different messages running in
74 different GMainContexts on the same SoupSession, though only
75 to a limited extent since SoupSessionAsync is still not
76 thread-safe). In particular, this was added in order to
77 address WebKit bug 68238. [Dan]
79 * Made SoupURI %-encode non-ASCII characters when parsing
80 URIs, in particular to fix a problem with certain servers
81 sending syntactically invalid redirects that they would then
82 only interpret correctly if you fixed the syntax for them.
83 (@$!@#! Although the new code is probably more correct than
84 the old code anyway, so...) [#662806, Dan]
86 * Fixed a connection-handling bug that could cause problems
87 with servers that requested authentication and then timed
88 out the connection while the application was waiting for the
89 user to enter a password. [#660057, Dan]
91 * Made NTLM and Basic authentication handle some non-ASCII
92 usernames and passwords. (NTLM should handle most. It's
93 impossible to fix Basic in the general case.) [#576838,
94 Joachim Breitner, "sponsored by ITOMIG GmbH and the City of
97 * Added support for "deflate" Content-Encoding, so that we can
98 work with broken servers that insisted on using it even
99 though we explicitly indicated in the request headers that
100 we didn't support it. (@$#!#) [#661682, Sergio]
102 Changes in libsoup from 2.36.0 to 2.37.1:
104 * Fixed a problem with connections being assigned to multiple
105 requests at once after a redirection [#651146, Sergio]. Made
106 soup_session_pause/unpause_message() work in any state, not
107 just while the HTTP I/O is occurring, and used this to add a
108 test case for that bug. [Dan]
110 * Ported SoupSession to use GTlsDatabase internally, and added
111 two new properties, SoupSession:use-system-ca-file (to
112 specify that the session should use the default system
113 tlsdb) and SoupSession:tlsdb (to specify a specific tlsdb to
116 * Likewise, added SoupServer:tls-certificate, for specifying a
117 certificate/key for an https server to use.
119 * Made SoupHTTPInputStream use memory more efficiently.
122 * Fixed soup_message_get_https_status() to return information
123 more reliably (with latest glib-networking).
125 * Bumped the glib requirement to 2.30.0; although libsoup does
126 not use any new glib 2.30 APIs, there are several important
127 bugfixes in glib between 2.28 and 2.30 that libsoup needs.
128 Currently libsoup builds against either glib 2.30.x or glib
131 Changes in libsoup from 2.35.92 to 2.36.0:
133 * Improvements to gtk-doc documentation. [Dan]
135 Changes in libsoup from 2.35.90 to 2.35.92:
137 * Fixed a problem where SoupHTTPRequest response bodies could
138 be truncated. [#659256, Sergio]
140 * Fixed a bug in copying TLS information from SoupSocket to
141 SoupMessage, causing all https connections to be reported as
142 "untrusted" in epiphany. [Dan]
144 * Made SoupSession remove items from its host cache after a
145 while, so that if a host changes IP address, it will
146 eventually try to re-resolve it. [#646959, Sergio]
148 Changes in libsoup from 2.35.5 to 2.35.90:
150 * Added SOUP_MESSAGE_CAN_REBUILD flag, to use with
151 soup_message_body_set_accumulate(FALSE) on a request body,
152 to indicate that the caller will recreate the request body
153 after it has been discarded if the message needs to be
156 * Fixed the build on mingw-w64 by not using "interface" as
157 as variable name. [#656402, Erik van Pienbroek]
159 * (The multihosted https server regression mentioned in the
160 2.35.5 NEWS turned out to be a glib-networking bug, which is
161 fixed as of 2.29.18.)
163 Changes in libsoup from 2.35.4 to 2.35.5:
165 * Support NTLM single sign on via samba's /usr/bin/ntlm_auth.
166 [#650940, Mandy Wu]. This is enabled by default (if NTLM is
167 enabled for the session and the ntlm_auth binary is
168 available), but will fall back to the standard
169 password-based authentication if SSO fails.
171 * Default to TLS+extensions for https connections, falling
172 back to SSLv3-without-extensions (the old default) only if
173 the server fails to negotiate TLS. [#581342]
175 * As a result of this change, some users are currently
176 seeing problems with sites that serve multiple https
177 hosts from a single IP address (eg,
178 *.launchpad.net). There is no known workaround at
181 * Fixed a longstanding problem with https pages sometimes not
182 loading when using a proxy. [#631368, based on patches from
183 DongJae Kim and Thierry Reding]
185 * SoupContentSniffer: don't use gio's sniffing rules, since
186 the spec now recommends that browsers not do any additional
187 sniffing beyond what's in the spec. [#648846, "arno"]
189 * Fixed SoupRequestHTTP to work properly with alternate
190 GMainContexts. [#653707]
192 * Added some annotations from Vala's vapi files. [#655397,
193 Evan Nemerson]. Also, removed SoupProxyResolver from the
194 gir/typelib, since it had been deprecated since before
195 introspection was available, and it was being scanned wrong
198 Changes in libsoup from 2.35.3 to 2.35.4:
200 * CVE-2011-2524: Fixed a security hole that caused some
201 SoupServer users to unintentionally allow accessing the
202 entire local filesystem when they thought they were only
203 providing access to a single directory. [#653258]
205 * Plugged another SoupCache memory leak [Xan]
207 * Simplified SoupCache keys, and handle collisions. [#649963,
210 * Annotate SoupSession:add-feature, etc, as (skip), so they
211 don't conflict with the methods of the same name. [#655150,
214 Changes in libsoup from 2.34.1 to 2.35.3:
216 * SoupCache fixes [Sergio]:
218 * Don't store hop-by-hop headers [#650094]
220 * Fix status code and headers of responses returned
221 from the cache after being revalidated [#649965]
223 * Added versioning support to the cache file format
224 [#652554] and extended it to keep track of the
225 status code [#649965]
227 * Fixed storage of time values in the cache [#653349]
229 * Fixed a use-after-free that could result in bogus
230 data being written to the cache [#650620]
232 * Various leaks [#649309]
234 * Work around an Apache bug where it tells browsers to
235 automatically decode .gz files but still keep the .gz in the
238 * Fixed an overflow when sending a response larger than 2^31
239 bytes (eg, streaming movies in Rygel). [#638468, Jens Georg]
241 * Always send the Keep-Alive header, not just to hosts we
242 already know to be HTTP/1.0 [#648680, Sergio]
244 * Fixed various leaks [#652699, Sergio], [#651643, Milan],
247 * Minor build fix for Debian/Ubuntu [#648948]
251 Changes in libsoup from 2.34.0 to 2.34.1:
253 * Two multipart forms/Content-Disposition fixes [Dan]:
255 * UTF-8-encoded header encoding/decoding rules updated
256 to match RFC 5987. In particular, a UTF-8-encoded
257 filename parameter in Content-Disposition will now
258 override an ASCII one.
260 * When not using UTF-8-encoded filenames in
261 Content-Disposition, always quote the filename,
262 since some servers erroneously fail to handle
263 non-quoted ones. [#641280]
265 * Fixed several memory leaks [Dan, Xan]
267 * Fixed decoding base64 data: URLs [#646896, Sergio]
269 * Simplified the libsoup-gnome build on Windows by dropping
270 the gnome-keyring dependency. [Fridrich Štrba]
272 * Fixed a bug in soup_uri_to_string() in which (invalid) port
273 numbers could be output as negative numbers (tripping up a
274 WebKit "sanity checking" test). [#647767, Sergio]
276 * Fixed a cache corruption bug in SoupCache. [#648285, Sergio]
278 * Fixed a crash in SoupSessionSync when using
279 soup_session_abort().
281 Changes in libsoup from 2.33.92 to 2.34.0:
283 * Fixed the GMainContext handling of the new
284 SoupProxyResolverDefault (which among other things fixes
285 gstreamer usage inside epiphany). [#646201, Sebastian Dröge]
287 * Tweaked the introspection Makefile rules to fix a problem
288 building on Debian/Ubuntu. [#645505]
290 * Belated bumped the shared library versioning to reflect the
291 API additions since 2.32.0
293 Changes in libsoup from 2.33.90 to 2.33.92:
295 * LIBSOUP NO LONGER DEPENDS ON GCONF OR LIBPROXY.
298 * Added SoupProxyResolverDefault, which uses uses gio's
299 GProxyResolver to resolve proxies [#642982, Gustavo Noronha
300 Silva]. Despite the "default" in the name, it is not used by
301 default, for compatibility reasons, but it is available in
302 plain libsoup, not libsoup-gnome. (Of course, it depends on
303 having glib-networking installed.)
305 * Updated SoupProxyResolverGNOME to be based on
306 SoupProxyResolverDefault, but explicitly requesting the
307 "gnome" GProxyResolver if it is available [#625898], and
308 removed the old code that used GConf and libproxy directly.
310 * Added soup_server_disconnect(), to explicitly disconnect a
311 SoupServer, since it is not possible to g_object_unref() it
312 from memory-managed language bindings. [#638576, Andreas
315 * SoupDate now parses month names case-insensitively [#644048,
318 * Avoid a g_return_if_fail() when using
319 SOUP_COOKIE_JAR_ACCEPT_NO_THIRD_PARTY with non-http URIs
320 (file:, data:, etc). [#643226]
322 * SoupCookieJar now catches overflows when parsing very
323 distant dates [#643462, based on a patch from Mark
326 * Fixed a buggy interaction between request body streaming and
327 restarted requests [David Woodhouse]. Added some new tests
328 to tests/chunk-test.c to make sure that a specific
329 (unsupported!) way of using those methods would not get
330 broken in the future.
332 * Fixed soup_socket_get_remote_address(), which had been
333 broken since 2.33.4 (and which in turn caused
334 soup_client_context_get_address/_get_host to be broken).
337 Changes in libsoup from 2.33.6 to 2.33.90:
339 * Attempted to make libsoup's dependency on glib-networking
340 (for TLS support) more explicit, by requiring that
341 glib-networking be present at compile time unless the
342 builder explicitly passes "--disable-tls-check", and noting
343 that packagers should give libsoup a runtime dependency on
346 * Fixed a bug in talking to servers with virtual hosts with
347 Unicode names (IDNs) [#642075]
349 * Added a "Connection: Keep-Alive" header when talking to
350 HTTP/1.0 hosts, to improve performance. [#640414, Sergio
353 * Changed SoupCache to not cache multipart/x-mixed-replace
354 content. [#642028, Sergio Villar Senin]
356 Changes in libsoup from 2.33.5 to 2.33.6:
358 * Made SoupSessionAsync do idle-connection cleanup more
359 sanely, resulting in faster load times for pages with lots
360 of subresources. [#639768, Sergio Villar Senin]
362 * Fixed soup_form_decode()'s behavior (and by extension,
363 SoupServer query string handling) with datasets that contain
364 multiple values for the same key, and added a test case.
365 [#639783, Sven Neumann]
367 * Fixed warnings pointed out by gcc 4.6, including a bug in
368 SoupCache that would cause unnecessary revalidations
371 * Belated copied a fix from the WebKit copy of soup-cache.c
372 into ours, and fixed a bug in the local copy of
373 soup-request-data.c [#641022, Sergio Villar Senin], in
374 preparation for making WebKit use the libsoup versions.
376 Changes in libsoup from 2.33.4 to 2.33.5:
378 * Fixed certain cases of soup_session_cancel_message() with
379 SoupSessionSync that could previously cause warnings or
382 Changes in libsoup from 2.32.2 to 2.33.4:
384 * SoupSocket now uses GSocketConnection and GTlsConnection
385 internally rather than making socket calls directly and
386 using GIOStream, and TLS is handled via glib's APIs rather
387 than using gnutls directly.
389 * The gzip Content-Encoding handler is now implemented using
392 * As a result of the above two changes, libsoup no longer
393 directly depends on gnutls, libgcrypt, or zlib, though it
394 still indirectly depends on zlib via glib and libxml2. Also,
395 although libsoup does not depend on glib-networking as a
396 build-time dependency, some "make check" tests will be
397 skipped if it is not installed.
399 * The SoupRequest/SoupCache code from WebKit has been
400 imported, but it is not yet recommended for general use, and
401 is not necessarily API stable. [#523100, Sergio Villar, with
402 the SoupRequest parts based on the Summer of Code work by
403 Gabriel Corvalan and the cache parts based on an earlier
406 * Added SoupMessage:tls-certificate and
407 SoupMessage:tls-errors, which give more information about
408 the certificate used to authenticate a TLS connection.
410 * It is now possible to disable Basic or Digest auth in a
411 session by using soup_session_remove_feature_by_type() with
412 SOUP_TYPE_AUTH_BASIC or SOUP_TYPE_AUTH_DIGEST. Likewise, the
413 right way to enable NTLM support now is to call
414 soup_session_add_feature_by_type() with SOUP_TYPE_AUTH_NTLM;
415 SOUP_SESSION_USE_NTLM is now deprecated.
417 * Allow setting cookies on file:// URIs, since other browsers
418 do, and WebKit has a test for it. [#603825]
420 * .gir/.typelib files now include C header/library information
421 (needed by vala and some other bindings) [#635395, Evan
424 * Added annotations on soup_message_headers_get_content_type()
425 [Lucas Rocha] and SoupHTTPVersion [John Palmieri]
427 * Fixed a Set-Cookie processing leak [#636741, Jonathan
430 Changes in libsoup from 2.32.1 to 2.32.2:
432 * Fixed a regression in 2.32.0 that caused evolution-exchange
433 to get stuck and stop updating. [#634422]
435 * Fixed a regression in 2.32.0 with apps using asynchronous
436 sessions from multiple threads (in particular, gupnp)
439 * Fixed the regression test for #631525 to not cause spurious
440 "make check" failures on some machines.
442 Changes in libsoup from 2.32.0 to 2.32.1:
444 * Fixed a regression in 2.32.0 with the use of persistent
445 connections that caused spurious "Connection terminated
446 unexpectedly" errors. [#631525, debugged by Sergio Villar]
448 * Fixed a regression in 2.32.0 that caused proxy-related
449 DNS errors to return SOUP_STATUS_CANT_RESOLVE rather than
450 SOUP_STATUS_CANT_RESOLVE_PROXY.
452 * Usernames/passwords specified explicitly in request URIs now
453 override existing cached auth info. [#631679, Sergio Villar]
455 * Changed soup_uri_decode() and soup_uri_normalize() to just
456 ignore malformed %-encoding rather than returning NULL,
457 for consistency with soup_uri_new(). [#630540]
459 * Fixed soup_form_decode() to ignore invalid parameters,
460 and soup_form_encode_hash() to just g_return_if_fail()
461 rather than crashing if there are NULL values in the
464 * Added another workaround for stupid servers that close the
465 connection before returning the full response (in this case,
466 when using chunked encoding and failing to include the
467 final 0-length chunk). [#629160]
469 * Fixed a bug in SoupCookieJarText that deleted excess cookies
470 whenever any cookie expired. [#631641, Michał Kazior]
472 * Fixed a small leak in SoupContentDecoder if you were using
473 it incorrectly. [pointed out in email by Christophe
476 * Added regression tests for passwords-in-URIs [#631679,
477 Sergio Villar] and SOUP_SESSION_IDLE_TIMEOUT.
479 Changes in libsoup from 2.31.92 to 2.32.0:
481 * (No changes, just a version bump)
483 Changes in libsoup from 2.31.90 to 2.31.92:
485 * Updated for gobject-introspection 0.9.5. Also added some new
486 annotations and removed a bunch of private headers from the
489 * Percent-encoded characters in URIs are no longer
490 automatically normalized to uppercase, since apparently some
491 servers are stupid. [#628728, Sergio Villar Senin]
493 * Fixed a crash when resolving a URI containing both spaces
494 and non-UTF8 8bit characters. [#629449]
496 Changes in libsoup from 2.31.2 to 2.31.90:
498 * libsoup now tries to connect to each IP address associated
499 with a hostname, if the first one fails. In particular, if a
500 host has both IPv4 and IPv6 addresses, and only one of them
501 is reachable from the current host, libsoup will now try the
502 other one rather than failing. (libc is supposed to sort the
503 IP addresses in the right order, such that, eg, if you don't
504 have IPv6 connectivity, it will put the IPv4 address first.
505 For some reason though, this seems to be broken on some
508 * Fixed Accept-Language header generation in locales where ","
509 is used as the decimal point.
511 Changes in libsoup from 2.31.2 to 2.31.6:
513 * Disabled TLS 1.2 in addition to the already-disabled 1.1 and
514 1.0 [see below, in libsoup 2.27.2], thus making libsoup
515 usable with gnutls 2.10. [#622857. This commit, 01a43ad9,
516 can be applied to libsoup 2.30.x as well if you need that
517 release to work with gnutls 2.10.]
519 * When using libproxy 0.3 or newer, libsoup no longer leaks
520 proxy-related environment variables into child processes
523 * Changed the way message/connection binding works in
524 SoupSession so that (among other things), when there are
525 multiple requests queued to a host, and one of them gets a
526 network error, the other requests are still allowed to try
527 to succeed, rather than all failing immediately. [#619633]
529 * SoupSession now limits the number of times a message can be
530 redirected, to avoid infinite loops [#604383, José Millán
533 * Fixed handling of certain messages where the response
534 headers included "Connection: close" but the server did not
535 actually close the connection at the end. [#611481]
537 * Fixed some incorrect g-i annotations [#621021]
539 * Fixed an out-of-bounds memory access when processing certain
540 Set-Cookie headers [#620288]
542 * Improved msg->reason_phrase on network errors [#623274]
544 * Fixed gir file disting [#621727, Yaakov Selkowitz]
546 Changes in libsoup from 2.30.1 to 2.31.2:
548 * gobject-introspection has now been merged in. Use
549 --enable-introspection to build. [#576595, Andreas Rottmann]
550 Note that the introspected API is not yet stable, and in
551 particular, there are numerous values annotated as "utf8"
552 which are actually not guaranteed to be utf8. (Eg, most
555 * Added some helper functions for bindings:
556 soup_buffer_new_take(),
557 soup_message_body_append_take(), and
558 soup_buffer_get_data(). [#576595, Andreas Rottmann]
560 * Also added properties for several SoupMessage public
561 fields, and getter methods for various boxed types
562 (SoupCookie, SoupDate, SoupURI).
564 * Added some additional hash-table annotations.
565 [#619086, Gustavo Noronha Silva]
567 * Marked SoupSession abstract. [#617216, Lorenzo Gil, the
568 first bug filed by someone trying to use libsoup via
569 introspection!] Likewise for SoupAuth and SoupAuthDomain.
571 * Fixed a problem with SoupSessionAsync that would cause
572 messages to get lost if you aborted a previous message while
573 it was still looking up the hostname. Fixed several other
574 problems that were discovered while adding a regression test
575 for that. [#618641, thanks to Claudio Saavedra for a good
578 * Fixed another connecting-to-lame-http-server problem, and a
579 getting-stuck-in-a-loop-reconnecting bug that it revealed.
582 Changes in libsoup from 2.30.0 to 2.30.1:
584 * Fix for https through proxies that close the connection when
585 returning a "407 Proxy Authentication Required" response,
586 and add a regression test for that case. [#611663]
588 * Fixed multiple forms/multipart-related interoperability
589 problems reported by Egon Andersen:
591 * Don't quote the multipart boundary string if it's
592 not needed, since RFC 2616 recommends that you
593 don't, and some servers don't handle quotes there
594 correctly. (Sigh.) [#614176]
596 * Don't put an extra blank line before the first
597 multipart part, since it's unnecessary and some
598 servers don't handle a multipart preamble correctly.
601 * Don't put Content-Transfer-Encoding headers in the
602 multipart/form-data parts, even though the HTML 4
603 spec says you must, since no other browsers do, and
604 some servers don't handle them correctly. (Sigh.)
607 * Changed SoupCookieJarSqlite to actually erase deleted
608 cookies from the database. [#615711, Lukasz Slachciak]
610 * Fixed SoupLogger to be more robust against getting passed
611 bad data by the session. [#611663]
613 * Fixed SoupAuthDomain to ignore paths when doing proxy auth
615 * Fixed a g_warning when hovering over a javascript link in
616 WebKit. [#613442, Xan Lopez]
618 Changes in libsoup from 2.29.91 to 2.30.0:
620 * Fixed a crash in the whitespace-stripping code in
621 soup_uri_new() [#612644, "arnaud.lb"]
623 * Update content-sniffing algorithm to match Chrome and the
624 soon-to-be-updated sniffing spec. [#611502, Gustavo Noronha
627 * We now handle "Content-Encoding: x-gzip" as well as "gzip"
628 (even though "x-gzip" has been deprecated for more than 10
631 * Fixed leaks found by valgrind
633 * Make the "make check" programs only bind to 127.0.0.1, not
634 any public network interfaces. [#609489, Saleem Absulrasool]
636 * Add a test to sniffing-test to make sure that Content-Type
637 parameters are preserved correctly. [Gustavo Noronha Silva]
639 Changes in libsoup from 2.29.90 to 2.29.91:
641 * Added SOUP_SESSION_SSL_STRICT and
642 SOUP_MESSAGE_CERTIFICATE_TRUSTED, to allow callers to
643 determine if an https response comes from a server with a
644 recognized/valid or unrecognized/invalid certificate.
645 [#610374, Gustavo Noronha Silva]
647 * Fixed handling of certain badly-formatted URIs [#590524]
649 Changes in libsoup from 2.29.6 to 2.29.90:
651 * Added soup_cookie_jar_set_accept_policy() and related API
652 for implementing cookie acceptance policies. [#608353, Xan
655 * Fixed the "request-read" signal in SoupServer to actually be
658 Changes in libsoup from 2.29.5 to 2.29.6:
660 * Fixed SoupContentDecoder to ignore trailing junk after the
661 encoded message body (as other browsers do), rather than
662 getting stuck in an infinite loop. [#606352]
664 * Fixed an invalid read in soup_cookie_applies_to_uri()
665 [#607024, pointed out by Xan]
667 * Fixed linking on OS X [#606959]
669 * Removed a harmless warning in SoupServer. [#606645]
671 Changes in libsoup from 2.29.3 to 2.29.5:
673 * Added SoupContentDecoder, providing support for
674 Content-Encoding: gzip for WebKitGTK. [#522772]
676 * Added "accept-language" and "accept-language-auto"
677 properties to SoupSession, to support the Accept-Language
678 header. [#597004, Mario Sanchez Prada]
680 * Fixed a bug in SoupPasswordManagerGNOME that could cause
681 crashes if you typed the wrong password once and then tried
682 again. [#595554, debugged by Gustavo Noronha Silva]
684 * Fixed a crash in SoupAuthDigest if the server claims support
685 for both qop=auth and qop=auth-int. (This was not noticed
686 sooner because no one actually supports qop=auth-int, and
687 the server in question here was probably confused. :)
689 * Updated cookie parsing/output to more closely match
690 draft-ietf-httpstate-cookie-00. [Also fixes #603496 (WebKit
691 unit test), and #604794 (hang parsing malformed Set-Cookie
694 * Fixed https-via-proxy to not hang if there is an error
695 communicating with the proxy immediately after the TLS
696 negotiation. [#587528]
698 * Fixed a bug that broke gobject-introspection's introspection
699 of libsoup. [#603696, Vincent Untz]
701 * Handle spurious CR/LFs between responses. [#602863,
702 Alexander V. Butenko]
704 * Fixed soup-message-client-io to not erroneously include URI
705 fragments on the Request-Line when sending via a proxy.
706 [Related to WebKit bug #28687]
708 * Fixed Digest authentication against certain (buggy?)
709 clients/servers that require you to use quotes in exactly the
710 same places where the spec uses them. [#582219]
712 * Fix ugly gtype-related hack to work with the latest unstable
713 glib. [Benjamin Otte]
715 Changes in libsoup from 2.28.1 to 2.29.3:
717 * Fixed a crash in SoupCookieJarSqlite when using cookie
718 databases not created by libsoup (eg, upgraded epiphany
719 installations). [Patch from Emilio Pozuelo Monfort]
721 * Fixed SoupCookieJar to handle non-http URIs properly (so
722 that, eg, JavaScript bookmarklets that try to set/read
723 cookies won't cause crashes). [#602498]
725 * HEAD requests that receive a "303 See Other" response will
726 now do a HEAD, not a GET, on the redirected-to resource.
727 Fixes gvfs access to some sites, including certain
728 youtube.com URIs. [#600830]
730 * Fixed a g_warning that would always trigger in the
731 server-side SoupCookie code. [#602389]
733 * Fixed the server-side SoupMultipart code to be able to parse
734 multiparts containing binary attachments, rather than
735 rejecting them as malformed. [#601640]
737 * Fixed the Request-Line format in the https-over-proxy case.
738 Among other things, this fixes access to bugzilla.gnome.org
739 from WebKitGTK-based browsers. [#598277, #600826]
741 * Fixed a leak in SoupSession if a message was cancelled while
742 the initial socket connection was in progress. [#596074,
743 debugged by Arnout Vandecappelle]
745 * Fixed server-side parsing of Digest auth. [#602898, Chris
748 * Fixed WinSock initialization on Windows. [#600689, Tor
751 * Fixed a sporadic crash in the SSL code on Windows. [#600748,
754 * Fixed handling of https connections with timeouts on
755 Windows. [#600749, Tor Lillqvist]
757 * Added soup_session_prepare_for_uri(), to allow DNS
758 prefetching for faster browsing. [#598948, José Millán Soto]
760 * SoupSession now avoids redundant DNS lookups again when
761 first connecting to a new site, resulting in (probably
762 imperceptibly) faster loads.
764 * Added some debugging APIs to SoupConnection and SoupSession
765 for use by, eg, epiphany's soup-fly extension. [#589163,
768 Changes in libsoup from 2.28.0 to 2.28.1:
770 * libsoup will now attempt to make multiple connections to a
771 server at once when there are multiple messages queued to
772 that server. The previous behavior (only allowing a single
773 pending connection to each server) resulted in slow load
774 times on pages with lots of subresources (images, css, js,
775 etc) on servers that disallow persistent connections.
778 * There should now be fewer (no?) "Connection terminated
779 unexpectedly" errors in WebKitGTK.
781 * Fixed a crash in SoupCookieJarSqlite [#596859, patch from
784 * Fixed soup_address_get_physical() and address-to-name
785 resolution of SoupAddress [patch from Enrico Tröger].
787 * Fixed a bug in SoupContentSniffer that could cause false
788 negatives [#597545, patch from Alejandro Castro].
790 * Fixed the configure error if you have gnutls-devel but not
791 gcrypt-devel installed [#587709].
793 Changes in libsoup from 2.27.92 to 2.28.0:
795 * Fixed a handful of leaks found with valgrind, including a
796 large one in SoupContentSniffer [WebKit bug 28148].
798 * Changed the behavior of SoupCookieJarSqlite to improve
799 performance. [#584522, patch from Gustavo Noronha Silva]
801 * Fixed a crash in SoupSocket that affected gupnp. [#594951,
802 patch from Olivier Crête]
804 * Fixed the type of the SOUP_METHOD_* and SOUP_URI_SCHEME_*
805 macros to be const char * rather than gpointer. [#594508]
807 Changes in libsoup from 2.27.91 to 2.27.92:
809 * Removed SoupPasswordManager from the public API until its
810 problems can be addressed. Although it is still present, you
811 need to #define a special symbol for it to be visible in the
812 header files; see #594377 for details.
814 * Fixed a bug where empty query components were dropped from
817 * Fixed "make check" to work (but warn) when building with
820 * Fixed some small documentation bugs pointed out by Dominik
821 Bylica and Lucian Langa.
823 Changes in libsoup from 2.27.90 to 2.27.91:
825 * Added SoupPasswordManager, an interface for managing
826 persistent password storage, and SoupPasswordManagerGNOME
827 (in libsoup-gnome), which implements it using gnome-keyring.
828 tests/get.c provides a minimal example of how to use it.
830 * libsoup should now notice when the server closes a
831 persistent connection, and close its side of the connection
832 sooner. This should hopefully fix the spurious "Connection
833 terminated unexpectedly" errors in WebKitGTK. [#578990]
835 * Fixed some problems with connection management in
836 SoupSession that could cause a session to eventually "stall"
837 and be unable to process new requests. [#592084]
839 * Fixed an infinite loop that caused 100% CPU usage if the
840 network went down at exactly the right time while there were
841 unsent messages in the queue. [#592492]
843 * Fixed a crash in SoupLogger. [#591857]
845 * Fixed the definition of soup_message_is_keepalive() for
846 HTTP/1.0 messages, to fix a problem introduced in 2.27.90
847 where some messages would load completely but never emit
850 * Fixed a crash in SoupServer introduced in 2.27.90 when
851 processing a request with no "Host" header.
853 Changes in libsoup from 2.27.5 to 2.27.90:
855 * libsoup now uses glib's GResolver rather than its own DNS
856 code. For 2.27.90, the only visible change should be that
857 internationalized domain names are now supported. [#548287]
859 * Added soup_message_disable_feature(), which allows you to
860 disable particular features (eg, cookies, proxy,
861 content-sniffing, etc) on a per-message basis. [#574773]
863 * It is now possible to implement "OPTIONS *" in a SoupServer;
864 you must explicitly register a handler for "*" in order to
867 * Ignore Content-Length on EOF-terminated responses, to match
868 other browsers and therefore cope with broken servers that
869 send the wrong length. [Patch from Benjamin Otte.]
871 * Fixed the status code when trying to fetch an https URI with
872 a non-gnutls build of libsoup. [#590464]
874 * Fixed strict-aliasing warnings introduced in 2.27.4
877 * Fixed some warnings noted by fortify [#591226] and -Wextra.
879 * libsoup now uses automake 1.11's silent-rules support by
880 default (if you are building with automake 1.11). Use
881 "./configure --disable-silent-rules" or "make V=1" to
884 Changes in libsoup from 2.27.4 to 2.27.5:
886 * Fixed a crash when a web server redirected a request to a
887 non-http URI (eg, "about:blank"). [#528882]
889 * Fixed a hang when trying to create an attachment on certain
890 bugzilla installations from epiphany. [#584645]
892 * Fixed verification of V1 TLS certificates [#589323, Patrick
895 * Fixed compile problems on Windows (in the ssl code), and on
896 Linux (when the most recent version of gtk-doc was
899 Changes in libsoup from 2.27.2 to 2.27.4:
901 * Added SoupContentSniffer and the "content-sniffed" signal on
902 SoupMessage, to do Content-Type sniffing per the HTML5 /
903 draft-abarth-mime-sniff algorithm. [#572589, Gustavo Noronha
906 * Updated the earlier SoupSession timeout fixes ([#574414],
907 [#578928]) so that async connect() also times out [#588177,
908 Mark Nauwelaerts] and SSL works on Windows again [#587910,
911 * Fixed the behavior on a 301 response to a POST to match
912 real-world usage rather than what the spec says. (We were
913 doing the right thing on 302 and 303, but had missed 301.)
916 * Changed configure so that if GNUTLS isn't found then it
917 errors out, rather than silently building an SSL-less
918 libsoup. Configure with --disable-ssl if you actually don't
921 Changes in libsoup from 2.27.1 to 2.27.2:
923 * Replaced SoupProxyResolver with SoupProxyURIResolver, which
924 is a bit simpler, works with non-HTTP URIs (and so could be
925 used by gvfsd-ftp) and supports proxy auth correctly.
928 * Fixed SoupSession to not try to resolve http server
929 hostnames when it's just going to pass the hostname off to a
930 proxy server anyway. This fixes things on hosts that use a
931 proxy for everything and have no working DNS config
932 [#577532] and also makes WebKitGTK behave more like other
933 browsers in terms of per-host connection limits (we now
934 limit connections based on hostname rather than on IP
937 We also no longer set the AI_CANONNAME flag when calling
938 getaddrinfo(), which saves us a little bit of unnecessary
939 network traffic. [Pointed out by Christophe Gillette on the
942 * libsoup now always uses SSL 3.0 (not TLS 1.0 or 1.1) for
943 https URIs, to work around problems with older servers that
944 don't implement the (apparently quite confusing) TLS/SSL
945 compatibility rules correctly. Makes a bunch of
946 previously-inaccessible sites now accessible in WebKitGTK
947 (notably PayPal) [#581342]. Will eventually be revisited, to
948 first try TLS 1.1 and fall back if that fails.
950 * Fixed Digest auth to (recent) Apple CalDAV servers.
953 * Changed the way the SoupSession "authenticate" signal works
954 a bit. We now never emit "authenticate" before sending a
955 request, even if we know for sure that it's going to fail,
956 because this makes the semantics of the authenticate handler
957 too complicated (and because we'll only get into this
958 situation if a previous call to the authenticate handler
959 failed anyway). Fixes problems in WebKitGTK when you cancel
960 a password dialog, and then later try to load the page
961 again. [#583462, mostly figured out by Gustavo Noronha
964 * Fixed a bug in the CRLF-vs-LF patch (#571283) that caused
965 libsoup to fail to parse the response headers (returning
966 SOUP_STATUS_MALFORMED) if a CR LF got split across two
969 * Allow using PUT in soup_form_request_for_data(), to work
970 with certain broken web APIs. [#581860, Ross Burton]. Also,
971 fixed a problem with empty POST bodies that made some parts
972 of gmail not work in WebKitGTK.
974 * Applied some minor bugfixes to configure.in and autogen.sh
975 [#583911, #583942]. Fixed configure.in to not use gcc
976 warning options that the installed version of gcc doesn't
979 * Added G_GNUC_NULL_TERMINATED and G_GNUC_PRINTF to a few
980 methods that should have had them. [#581754, Ross Burton]
982 Changes in libsoup from 2.26.1 to 2.27.1:
984 * SOUP_SESSION_TIMEOUT now works properly with
985 SoupSessionAsync [#574414] and SSL [#578928]. Added
986 tests/timeout-test to test this.
990 * soup_date_to_string() now handles SOUP_DATE_RFC2822
991 [#579055, Enrico Tröger]
993 * soup_date_new_from_string() now accepts 24:00 as a
994 time in ISO8601 timestamps
996 * soup_date_to_string() now coerces the date to UTC
997 for HTTP and cookie dates, and outputs the UTC
998 correct offset for the other date types.
1000 * Added regression tests to tests/date
1002 * soup_headers_parse() now completely ignores
1003 syntactically-incorrect headers, rather than passing them to
1004 soup_message_headers_append() and causing a g_warning.
1005 soup_message_headers_append() now also rejects 0-length
1006 header names. Updated tests/header-parsing to check this.
1009 * Fix a crash when cancelling a message from a "restarted"
1010 handler, and updated a regression test to notice the
1011 underlying cause. [#580193]
1013 * Completing the API updates for #576760 from 2.26.1,
1014 soup_message_headers_get() is now marked deprecated in favor
1015 of soup_message_headers_get_one() and _get_list().
1017 Changes in libsoup from 2.26.0 to 2.26.1:
1019 * libsoup uses libproxy for PAC and WPAD proxy resolution
1020 again. However, it arranges to do all communication with
1021 GConf itself, to ensure that libproxy doesn't call it in
1022 non-thread-safe ways. [#571527] Also, fixed a bug in
1023 SoupSessionSync when proxy resolution failed. [#574957,
1024 patch from Milan Crha].
1026 (Also fixed three SoupProxyResolverGNOME bugs since the
1027 2.26.0.9 preview release. [#578746, #578809])
1029 * SoupURI now handles unencoded spaces in URIs. In particular,
1030 redirects via Location headers with spaces in them now work.
1033 * libsoup can now deal with servers (and clients) that
1034 erroneously use LF LF instead of CR LF CR LF to separate
1035 the headers and body. [#571283]
1037 * Added soup_message_headers_get_one() and
1038 soup_message_headers_get_list(), which will eventually
1039 deprecate soup_message_headers_get(). This lets applications
1040 deal correctly with implementations that erroneously send
1041 multiple copies of single-valued headers. [#576760]
1043 * In particular, soup_message_headers_get_content_type() now
1044 ignores duplicate Content-Type headers [#576760] and also
1045 ignores syntactically-incorrect Content-Type headers.
1048 * SoupCookieJar can now store multiple cookies with the same
1049 domain and name, but different paths. [#577360]
1051 * Abnormal SSL connection closes are now treated as ordinary
1052 EOFs, for compatibility with certain sites. [#577386]
1054 * soup_header_g_string_append_param() now allows NULL values.
1057 * soup_message_headers_append() now rejects header names and
1058 values with newlines or certain other illegal data in them,
1059 rather than generating syntactically invalid headers.
1061 * Fixed a small bug in soup_date_new_from_string's ISO 8601
1062 handling [qv #578369 for g_time_val_from_iso8601].
1064 * The regression tests now work correctly on machines where
1065 "localhost" resolves to "::1" instead of "127.0.0.1".
1066 [#576583, patch from Andreas Rottmann]
1068 * Fixed warnings when a message has a network problem when
1069 many other messages are queued. [#578809]
1071 * Miscellaneous documentation fixes/clarifications.
1073 Changes in libsoup from 2.25.91 to 2.26.0:
1075 * Temporarily disable libproxy support to work around a bug in
1076 its gnome plugin that causes gvfsd-http (and probably
1077 eventually other apps) to crash. [#571527]. For now,
1078 SoupProxyResolverGNOME uses only GConf. To be fixed in
1081 * Fixed a bug that showed up in WebKit, where if many messages
1082 were queued all at once to a server that doesn't support
1083 persistent connections, some of the requests will get lost.
1084 #574365, reported by Xan Lopez.
1086 * Fixed SoupServer to support using SOUP_ENCODING_EOF, so you
1087 can stream responses of unknown length to HTTP/1.0 clients.
1088 [#572153]. Added a regression test for this, and for chunked
1089 and Content-Length-based streaming.
1091 * Fixed several bugs that prevented SoupCookieJarSqlite from
1092 working. [#572409, patch from Xan Lopez]
1094 * Added G_{BEGIN,END}_DECLS guards to public headers that were
1095 missing it. (Xan Lopez)
1097 * Misc gtk-doc improvements
1099 Changes in libsoup from 2.25.5 to 2.25.91:
1101 * Fixed a crash in SoupProxyResolverGNOME when the proxy
1102 requires authentication. (This does not make proxy
1103 authentication *work* yet, it just makes it not crash.)
1105 * Updated documentation
1107 Changes in libsoup from 2.25.4 to 2.25.5:
1109 * SoupProxyResolverGConf (which was incomplete) is gone, and
1110 libsoup-gnome now requires libproxy, which is now officially
1111 an external dependency of GNOME.
1113 * Fixed a bug in SoupCookieJar that was making it send
1114 "Cookie: (null)" when it had no cookies for a site, which
1115 confused some web servers (WebKit bug 23240).
1117 * Fixed a bug with using SOUP_MEMORY_TEMPORARY buffers and
1118 soup_message_body_set_accumulate(FALSE). (Part of WebKit bug
1119 18343, noticed by Gustavo Noronha Silva.)
1121 * Fixed the build with non-gcc compilers
1123 Changes in libsoup from 2.25.3 to 2.25.4:
1125 * Added soup_session_get_feature() and
1126 soup_session_get_features(), to query the features currently
1127 available in a session (which is needed by the patch in
1128 https://bugs.webkit.org/show_bug.cgi?id=22624)
1130 Changes in libsoup from 2.25.2 to 2.25.3:
1132 * Fixed a crash when using both cookies and a proxy. [#562191,
1135 * Fixed soup_form_decode() to correctly handle forms with
1136 URI-encoded parameter names [#563302, Evan Nemerson] and
1137 added a regression test.
1139 * Fixed a crash in SoupProxyResolverGConf. [#563145]
1141 Changes in libsoup from 2.25.1 to 2.25.2:
1143 * Fixed client behavior when presented with multiple auth
1144 types to choose the *strongest* auth type (eg, Digest)
1145 rather than the *weakest* one [#562339, Pontus Oldberg].
1146 Added a regression test for this.
1148 * Moved libsoup-gnome headers to a different directory to make
1149 it easier to split libsoup and libsoup-gnome into separate
1150 packages, and to ensure that things that only want to be
1151 looking at plain libsoup headers (like gir-repository) don't
1152 accidentally see the libsoup-gnome ones.
1154 * Some minor doc fixes
1156 * Fixed libsoup-gnome linking with --as-needed. [#559342]
1158 Changes in libsoup from 2.24.1 to 2.25.1:
1160 libsoup 2.25.1 introduces a new library, libsoup-gnome, which
1161 will be used for features which are important to GNOME apps,
1162 but which require GNOME-specific libraries that non-GNOME apps
1163 may not want to add dependencies on.
1165 In 2.25.1, libsoup-gnome contains:
1167 * SOUP_TYPE_PROXY_RESOLVER_GNOME, a SoupSessionFeature
1168 type that can be added to a SoupSession to provide
1169 automatic proxy handling via the GConf proxy keys. (See
1170 below) The default implementation uses libproxy, which
1171 also handles WPAD, PAC, etc, but if libproxy is not
1172 available it will use GConf directly, supporting only
1173 the basic HTTP proxy functionality.
1175 * SoupCookieJarSqlite, a SoupSessionFeature that handles
1176 cookies and stores them in a Firefox 3-compatible sqlite
1177 file. (This is not actually a "GNOME-specific" feature,
1178 but I didn't want to make libsoup itself depend on
1179 sqlite, and I didn't want to make the dependency
1180 optional. This might change before 2.26.)
1182 * SOUP_TYPE_GNOME_FEATURES_2_26: a SoupSessionFeature type
1183 that can be added to a SoupSession to add all
1184 GNOME-integration features that are available for 2.26;
1185 as of 2.25.1, this is just the GNOME proxy resolver, but
1186 by 2.26.0 it may also include gnome-keyring support and
1187 possibly other features.
1189 Applications/libraries that are currently doing GConf proxy
1190 lookup by hand can be updated as follows:
1192 * Remove all of the existing code that listens to the
1193 GConf keys and sets SOUP_SESSION_PROXY_URI
1195 * Change the configure check to require
1196 "libsoup-gnome-2.4 >= 2.25.1" instead of "libsoup-2.4"
1198 * #include <libsoup/soup-gnome.h>
1200 * After creating your SoupSession, do:
1202 soup_session_add_feature_by_type (session, SOUP_TYPE_PROXY_RESOLVER_GNOME);
1204 (Or alternatively, use SOUP_SESSION_ADD_FEATURE_BY_TYPE
1205 with soup_session_async_new_with_options() or
1206 soup_session_sync_new_with_options().)
1209 Other new features and bug fixes in 2.25.1 include:
1211 * SoupCookieJarText, like SoupCookieJarSqlite, but using the
1212 old-style cookies.txt format, and in the base libsoup rather
1215 * Various bugfixes to SoupCookie and SoupCookieJar to fix the
1216 problems with cookies not working on certain sites.
1218 * The new SoupMultipart type provides support for multipart
1219 MIME bodies, and soup-form now includes several methods for
1220 generating and parsing multipart form data and file uploads.
1222 * SoupMessageHeaders now has methods for easy handling of the
1223 Content-Type, Content-Disposition, Range, and Content-Range
1224 headers. The Content-Disposition handling recognizes
1225 RFC2231-encoded UTF-8 filenames.
1227 * SoupServer now automatically handles partial GET requests;
1228 if your server returns SOUP_STATUS_OK in response to a
1229 partial GET, libsoup will automatically convert it to a
1230 SOUP_STATUS_PARTIAL_CONTENT response with only the requested
1233 Thanks to Xan Lopez and Diego Escalante Urrelo for their work
1234 on SoupCookie, SoupCookieJar, SoupCookieJarText, and
1235 SoupCookieJarSqlite.
1237 Changes in libsoup from 2.24.0.1 to 2.24.1:
1239 * Fixed a crash when unreffing the session from a
1240 soup_session_queue_message() callback [#533473], and added
1241 regression test. In particular, this fixes a crash in
1242 seahorse when trying to connect to a non-responsive
1245 * Fixed an infinite loop when giving a bad password to a site
1246 that uses non-standard capitalization in the
1247 WWW-Authenticate header (eg, gmail.com) [#536285].
1249 * Fixed a leak in SoupSessionAsync when using a non-default
1250 GMainContext. [addendum to #498509, Arnout Vandecappelle]
1251 Added additional code to the regression tests to make sure
1252 sessions and servers do not get leaked.
1254 * Fixed a leak in the XML-RPC code
1256 * Compile fixes for "gcc -pedantic" [#553976, Sander Dijkhuis]
1257 and -DG_DISABLE_DEPRECATED / -DG_DISABLE_SINGLE_INCLUDES
1258 [#557072, Cosimo Cecchi]
1260 * Patched xmlrpc-test to accept the incorrect response to
1261 test_echo() that php-xmlrpc gives when it's built against
1262 libxml2 >= 2.7.1 (qv http://bugs.php.net/45996), so that
1263 I can "make distcheck"...
1265 * Updated generated documentation
1267 Changes in libsoup from 2.23.92 to 2.24.0.1:
1269 * Reverted part of the fix for #528882, which caused the DAAP
1270 plugin in rhythmbox to crash. [#553466]
1272 Changes in libsoup from 2.23.91 to 2.23.92:
1274 * Fixed the handling of a 302 response to a HEAD request,
1275 which should NOT be treated like a 303 response. [#551190,
1278 Changes in libsoup from 2.23.6 to 2.23.91:
1280 * Fixed a crash in gvfs [#528882], though there is still an
1281 unknown bug there. As part of this fix, libsoup will now
1282 return an error if you try to do an operation on a non-HTTP
1283 URI. (Previously it was just treating any URI scheme except
1286 * Added soup_date_to_timeval() for gvfs. [#549006, patch from
1289 Changes in libsoup from 2.23.1 to 2.23.6:
1291 * Fixed use of g_idle_add() so that heavy I/O won't end up
1292 blocking libsoup callbacks. [#536676, Benjamin Otte]
1294 * Allow the caller to override the Host header. [#539803, Marc
1297 * Properly handle responses larger than 4G. [#539861, Peter
1300 * Fixed the build when using certain LDFLAGS [#541506, Götz
1303 * Fixed a small bug in Digest auth handling. [#544681, Mads
1306 * Fixed multiple Windows bugs [Tor Lillqvist]
1308 Changes in libsoup from 2.4.1 to 2.23.1:
1310 * This is the first unstable release leading up to GNOME 2.24.
1311 Bumped the libsoup version number up to 2.23.x to match the
1312 GNOME version; note that the API version is still "2.4",
1313 meaning in particular that you still call it "libsoup-2.4"
1314 when using pkg-config.
1316 * Added SoupSessionFeature, an interface type that will be
1317 used for several new features. Ported SoupLogger and
1318 SoupAuthManager to use it.
1320 * Added SoupCookie and SoupCookieJar. This API is already
1321 being used in Epiphany, via WebKit, but it is not yet
1324 * Fixed GnuTLS support on Win32. [#528752, Marc Maurer]
1326 Changes in libsoup from 2.4.0 to 2.4.1:
1328 * Fixed SoupMessage to not downgrade to HTTP/1.0 for the
1329 second attempt when it receives an HTTP/1.0 redirect or 401.
1330 [#521848, Tommu Komulainen]
1332 * Fixed Host: header syntax when the host is an IPv6 address
1335 * Fixed SoupSession to not emit "authenticate" multiple times
1336 for messages that have been requeued. [#522601, Tommi
1337 Komulainen]. Also added two new signals to SoupSession,
1338 request-queued and request-unqueued, to help simplify
1339 certain session-helpers and avoid bugs like this in the
1342 * Fixed soup_server_pause_message() to actually work (rather
1343 than *un*pausing the message).
1345 * Added a property SOUP_SESSION_IDLE_TIMEOUT that can be used
1346 to set a timeout after which idle connections will
1347 automatically be closed. [#518214, Jorn Baayen]
1349 * Implemented RFC 2069-style Digest auth, and fixed SoupAuth
1350 to compare auth scheme names case-insensitively, to fix
1351 authentication against Apple's calendar server. [#498484]
1353 * Fixed a crash in SoupAuthDomainDigest if the client provided
1354 an unrecognized username. [pointed out by Curtis Magyar on
1357 * Fixed a few SoupDate bugs. (In particular, it was outputting
1358 the wrong day of the week when stringifying dates.)
1360 * Improved the cleanup of idle connections, to fix slow load
1361 times with the libsoup backend of WebKit.
1363 * Added a new SoupMessage signal "wrote-body-data" that can be
1364 used for progress information when sending a large request
1365 body. Also allow providing the request body in multiple
1366 chunks even when using Content-Length encoding. [#525101,
1369 * libsoup now ignores SIGPIPE globally, instead of
1370 un-thread-safe-ly ignoring it only around network writes. In
1371 particular, this means it is ignored when the SSL code needs
1372 to unexpectedly do a write when we asked it to do a read.
1373 [#524397, Curtis Magyar]
1375 * The discard-body-chunks-once-they're-no-longer-needed
1376 behavior, confusingly called SOUP_MESSAGE_OVERWRITE_CHUNKS,
1377 is now controlled by a SoupMessageBody method
1378 (soup_message_body_set_accumulate()), and can be applied to
1379 either the request body or the response body.
1380 (OVERWRITE_CHUNKS is still available for backward
1381 compatibility.) [#522146, Christian Kellner]
1383 * The DNS cache no longer caches "no such host" results, since
1384 some name servers lie to clients outside their firewall,
1385 which could then cause problems for laptops moved between
1386 networks. [#523269, Jörgen Scheibengruber]
1388 * Added some new regression tests, fixed some small bugs in
1391 Changes in libsoup from 2.3.4 to 2.4.0:
1393 * Fixed a small memory leak in SoupSession. [#518798, Wouter
1396 * Minor fixes to redirect behavior; PROPFINDs can now be
1397 automatically redirected (pointed out by Christian Kellner),
1398 and 302 is treated like 307, not 303. Also fixed to make
1399 sure that redirect-test actually gets run by "make check".
1401 * The SoupSocket I/O methods now set nread/nwrote even on
1402 error. [Benjamin Otte]
1404 Changes in libsoup from 2.3.2 to 2.3.4:
1406 * The documentation should be accessible from devhelp again
1407 [#518384, Mart Raudsepp]. (Also fixed another
1408 documentation-generation bug that affected builds from svn,
1409 but not the 2.3.2 tarball for some reason. [#518317,
1412 * Fixed dependencies in libsoup-2.4.pc file [#517631,
1415 Changes in libsoup from 2.3.0.1 to 2.3.2:
1417 API changes / Behavior changes:
1419 * soup_server_add_auth_domain() now refs the auth domain when
1420 adding it. (soup_server_remove_auth_domain() already
1421 unreffed it.) This means existing applications using
1422 SoupAuthDomain will now have a small memory leak. Those
1423 applications should update their libsoup-2.4 requirement to
1424 ">= 2.3.2" at some point before the final GNOME 2.22.0
1425 release, and then fix the code to unref the auth domain
1426 after adding it to the server.
1428 * SoupSession's automatic redirect-handling behavior now obeys
1429 RFC 2616 more closely. In particular, status codes 300 and
1430 304 are no longer mistakenly considered redirects; POSTs
1431 that receive 303 are now redirected into GETs; and POSTs
1432 that receive 301, 302, or 307 are now not redirected.
1434 Applications that were using the SOUP_MESSAGE_NO_REDIRECT
1435 flag to prevent libsoup from redirecting POSTs incorrectly
1436 before should now be able to remove that if they depend on
1437 libsoup-2.4 >= 2.3.2.
1441 * Added a SOUP_SESSION_USER_AGENT property to SoupSession, and
1442 SOUP_SERVER_SERVER_HEADER to SoupServer, to support
1443 automatically adding "User-Agent" and "Server" headers to
1444 messages. (The default behavior is to do nothing, as
1447 * Added several new methods to soup-forms.h. Applications that
1448 are encoding a fixed set of form fields can now just pass
1449 them to soup_form_encode(), rather than needing to construct
1450 a GHashTable or GData list. (Likewise, the new
1451 soup_uri_set_query_from_fields() behaves similarly for
1452 directly updating a URI with form data.) There are also now
1453 soup_form_request_new() and other related methods, to
1454 directly create a GET or POST SoupMessage for submitting a
1457 The original soup_form_* methods have all been renamed,
1458 although #defines exist for backward compatibility.
1460 * Added soup_message_set_chunk_allocator() and
1461 soup_buffer_new_with_owner(), to give applications more
1462 control over memory usage/copying when doing streaming HTTP.
1463 [Wouter Cloetens, #513810].
1465 * Added several new methods to soup-value-utils.h for working
1466 with multiple array or hash table values at once:
1467 soup_value_hash_new_with_vals(),
1468 soup_value_hash_insert_vals(),
1469 soup_value_hash_lookup_vals(),
1470 soup_value_array_new_with_vals(), and
1471 soup_value_array_append_vals().
1473 This helps to simplify XML-RPC calls that send or receive
1476 * Added soup_date_to_time_t().
1478 * Added SoupMessageHeadersIterator, an iterator type for
1479 SoupMessageHeaders that can be used instead of
1480 soup_message_headers_foreach().
1484 * Fixed a crash-when-idle in evolution-exchange [#437835] and
1485 rhythmbox [#506552].
1487 * Added the API version to the gtk-doc installation dir, to
1488 prevent parallel-installation problems with libsoup 2.2 and
1489 2.4. [#512810, Daniel Gryniewicz].
1491 * Fixed tests/query-test to compile correctly on Solaris.
1492 [#513602, patch from Jeff Cai]
1494 * Fixed some other minor HTTP conformance issues.
1498 * Although not present in the release tarball, there are now
1499 experimental python bindings for libsoup in GNOME subversion
1500 (in the python/ subdirectory of libsoup trunk). These are
1501 not yet stable (and are not built by default or installed
1502 even when building from svn), but comments on them are
1503 welcome at libsoup-list@gnome.org
1505 Changes in libsoup from the 2.2 series to 2.3.0.1:
1507 libsoup 2.3.0 is the first beta release of the libsoup 2.4
1508 series. It is an API break from the earlier 2.2 series that
1509 fixes various bugs and API warts and lays the groundwork for
1510 language bindings and various new features in upcoming
1513 (2.3.0.1 is identical to the 2.3.0 release in terms of code,
1514 but includes this updated NEWS file which was accidentally
1515 left out of the 2.3.0 tarball.)
1517 http://library.gnome.org/devel/libsoup/unstable/libsoup-porting-2.2-2.4.html
1518 goes over the API changes in detail. If you have questions not
1519 answered by the porting document, please send mail to
1520 libsoup-list@gnome.org.
1522 Specific user-reported bugs fixed in this release:
1524 * SoupURI now correctly handles URIs with complex encoded
1525 queries [#266516, Jean-Yves Lefort]
1527 * It is now possible for a SoupServer to use Digest auth
1528 without needing to have the cleartext password available.
1529 [#347108, Anas Nashif]
1531 * Digest authentication now properly handles "stale=true" and
1532 "nextnonce=..." [#471380, Jari Urpalainen]
1534 * SoupServer is now subclassible [#491653, Mathias Hasselmann]
1536 * soup_server_run_async and soup_server_quit no longer ref and
1537 unref the server, as that doesn't match ordinary GObject
1538 conventions [#494128, Mathias Hasselmann]
1540 * The test programs no longer use a symbol name that conflicts
1541 with Cygwin [#501631, Cygwin Ports Maintainer]
1543 * libsoup can now handle the not-quite-HTTP responses returned
1544 by Shoutcast servers [#502325, Wouter Cloetens]
1546 * If you use libsoup while disconnected from the network, it
1547 no longer caches the failed DNS results [#508593, Bradley
1550 Items from http://live.gnome.org/LibSoup/ToDo fixed:
1552 * "Expect: 100-continue" processing now works correctly on
1553 both client and server.
1555 * SoupSessions are no longer leaked
1557 * The XML-RPC API is improved. The SOAP API is gone...
1559 * Added utility functions for HTML form handling
1561 * Improved message header handling
1563 * SoupServer now automatically adds a "Date" header
1567 Changes in libsoup from 2.2.103 to 2.2.104:
1569 * soup_message_io_pause() and soup_message_io_pause() are now
1570 allowed for client messages (and in particular, they don't
1571 mess up when called from the "got_chunk" callback).
1572 [#452280, Marco Barisione]
1574 * Fixed some bugs in SOUP_SESSION_ASYNC_CONTEXT support that
1575 would cause parts of an operation to run in the default
1576 context rather than the session's context. Also fixed some
1577 leaks and added a regression test. [#498509, Wouter
1580 * There is a new test/sample program, tests/pull-api.c,
1581 showing how to implement a pull API using SoupSessionAsync.
1582 (This depends on the fixes for #452280 and #498509, so it
1583 won't work with older versions of libsoup.)
1585 * Discovered "valgrind --leak-resolution=med" and fixed some
1588 Changes in libsoup from 2.2.102 to 2.2.103:
1590 * Fix memory corruption in SoupSessionAsync that caused
1591 rhythmbox to crash. [#484988, patch from Rob Bradford]
1593 * Fix socket refcounting in SoupServer to fix warnings /
1594 possible crash. [#459896, Emanuele Aina]
1596 Changes in libsoup from 2.2.101 to 2.2.102:
1598 * Unbreak the build when building without SSL. Not that you
1599 should be building without SSL anyway, but... (reported by
1602 Changes in libsoup from 2.2.100 to 2.2.101:
1604 * Fix build on cygwin [384498]
1606 * Fix SSL rehandshaking on synchronous sockets [415402, Jacob
1607 Berkman] and add a regression test for it.
1609 * Fix two bugs in https tunnels over proxies that require
1610 authentication (noticed by Varadhan), and add a regression
1613 * Ensure that if you queue multiple messages at once to an
1614 http server that requires authentication but that you
1615 haven't authenticated to yet, that all of the messages get
1616 properly authenticated [271540, James Willcox]. And add a
1617 regression test for it.
1619 * Fix NTLM authentication, which got broken by the previous
1620 fix. [471389, Varadhan]. Add a basic NTLM regression test
1621 that doesn't really test the crypto/encoding parts, but at
1622 least makes sure that the message flow is correct.
1624 * Allow trailing whitespace after HTTP version in
1625 Response-Line, for compatibility with broken servers
1626 [475169, Stephane Loeuillet]. Add that case to the
1627 header-parsing regression test.
1629 * Fix crash when the session's "authenticate" handler returns
1630 a username and no password when using NTLM. [480987, Wendell
1633 * Use "new" glib base64 and iso8601 methods rather than
1634 duplicating them. [337010, patch from Emmanuele Bassi].
1636 * Implement soup_session_queue_message() for SoupSessionSync.
1638 * Add G_BEGIN_DECLS / G_END_DECLS to all headers that were
1639 missing them. [438776, patch from Jonathon Jongsma].
1641 * Fix broken definition of SOUP_IS_MESSAGE_FILTER_CLASS. Noted
1642 by "cascardo" on libsoup-list.
1644 * Remove documentation of non-public MD5 methods [440092,
1645 Jonathon Jongsma]. Removed a mysterious half-sentence in the
1646 SoupMessage docs [458116, Marco Barisione].
1648 Changes in libsoup from 2.2.99 to 2.2.100:
1650 * Fixed soup_headers_parse_status_line() so WebDAV response
1651 parsing will work again. [406997]
1653 * Fixed a bug in the header-parsing regression test that
1654 caused the test to fail sometimes, even though the actual
1655 header-parsing code was fine.
1657 Changes in libsoup from 2.2.98 to 2.2.99:
1659 * Fixed header parsing, including a crash in SoupServer with
1660 certain malformed requests [391970].
1662 * Fixed redirection to other hosts with SoupSessionAsync.
1665 * Fixed a small memory leak pointed out by Chris Austin.
1667 Changes in libsoup from 2.2.97 to 2.2.98:
1669 * The XML-RPC code now correctly interprets <value>foo</value>
1670 as meaning the same thing as
1671 <value><string>foo</string></value>. [364490] Pointed out by
1674 * Memory leak fixes from Andrew W. Nosenko.
1676 * A few symbols that should have been static before now are.
1677 [376387] Patch from Matthias Clasen.
1679 Changes in libsoup from 2.2.96 to 2.2.97:
1681 * Fixed SOAP and XML-RPC code to handle whitespace and
1682 comments in the XML better. (Based on a patch from Andrew W.
1685 * Fixed lots of typecasting/constness warnings in the code
1686 (mostly via a patch from Andrew W. Nosenko)
1688 * Fixed build on Cygwin [321827]
1690 * Fixed libsoup-2.2.pc fields [343340] and make it get
1691 uninstalled correctly [356809]. (Mikhail Zabaluev and
1694 * Fixed some small leaks in SoupServer pointed out by Paolo
1697 Changes in libsoup from 2.2.95.1 to 2.2.96:
1699 * SoupServer now works even if you don't explicitly set an
1700 encoding for the response. (In particular, the automatic 404
1701 if you request a path with no handlers now works. Problem
1702 pointed out by Dennis Jacobfeuerborn.)
1704 * WWW-Authenticate and Proxy-Authenticate responses with no
1705 realm parameter are now ignored, as per RFC 2617, fixing a
1706 crash pointed out by Nate Nielsen.
1708 * Added soup_xmlrpc_message_from_string(), from Fernando
1711 * simple-httpd and "get" now support HEAD
1713 Changes in libsoup from 2.2.94 to 2.2.95.1:
1715 * Even more fixes to XML-RPC, found by the new XML-RPC
1716 regression test. This includes some API changes that I don't
1717 feel guilty about, because the code totally didn't work at
1720 * Fixed a bug in soup_mktime_utc()
1722 * (2.2.95 was identical to 2.2.95.1. The only difference is
1723 that the shared library version was belatedly bumped from
1724 8.2.0 to 8.3.0 to reflect the API "additions")
1726 Changes in libsoup from 2.2.93 to 2.2.94:
1728 * Various fixes to the XML-RPC code (which apparently had not
1729 actually ever worked before) from Brent Smith. [343973,
1732 * Added client and server API tutorials to the docs
1734 * auth-test now uses a local Apache 2.2 install, if possible,
1735 rather than depending on files that used to be on an old
1736 Ximian web server but haven't been anywhere for a long time.
1739 Changes in libsoup from 2.2.92 to 2.2.93:
1741 * Fixed outgoing data corruption caused when SoupServer
1742 started writing out a response a second time after already
1743 having started once. [334469]. Also fixed 342640 and another
1744 bug caused by the workaround for 334469 in 2.2.92. Based on
1745 patches and analysis from William Jon McCann and Armin
1748 * Fixed a deadlock when changing a session's proxy URI.
1749 [309867 / bnc 174255, based on a patch by Veerapuram
1752 * Fixed https-via-proxies in the synchronous case. [bnc 174255]
1754 * Fixed a crash in evolution-exchange [342545, fix based on an
1755 analysis by Wang Xin].
1757 * Fixed simple-proxy to not crash at startup. Oops. (Alex
1760 Changes in libsoup from 2.2.91 to 2.2.92:
1762 * Fixed server-side digest auth to return a valid "algorithm"
1763 value and client-side to not crash if it sees an invalid one
1766 * Fixed the Request-Line parsing code to not hardcode a
1767 maximum URI length (to allow very long DAAP requests from
1768 iTunes in Rhythmbox). [335040]
1770 * Fixed some warnings (signed/unsigned mismatch).
1772 Changes in libsoup from 2.2.7 to 2.2.91:
1774 * (The large version number bump is because there was an
1775 internal 2.2.90 release for SUSE 10.1 alphas, which was
1776 supposed to be intermediate between 2.2.7 and 2.4.0. But
1777 2.4.0 didn't end up happening, and I don't want to regress
1778 the version number at this point.)
1780 * SoupSession, SoupServer, SoupConnection, SoupSocket, and
1781 SoupAddress now have an "async-context" property that allows
1782 you to use the async API in a non-default GMainContext.
1783 [Based on patches from Armin Bauer and Jürg Billeter.]
1785 * SoupSession, SoupConnection, and SoupSocket now have a
1786 "timeout" property to stop synchronous sockets from hanging
1787 forever if the remote end is unresponsive (from Varadhan).
1789 * Fixed some bugs in soup_date_iso8601_parse(). [324671, from
1792 * More Windows build fixes from Tor.
1794 Changes in libsoup from 2.2.6.1 to 2.2.7:
1796 * Fixed a crash when using NTLM connections [316313, probably
1797 also 318252]. (Also 321208, which was a bug introduced in
1798 the original fix for 316313.)
1800 * Fixed a bug that could cause soup to suck up all available
1801 CPU when a connection to a SoupServer was dropped by the
1802 other side [319305, patch from Jonathan Matthew]
1804 * Fixed the creation of struct elements in XMLRPC messages
1805 [321362, patch from Sebastian Bauer]
1807 * Plugged a small memory leak in SoupSocket (from Wang Xin).
1809 * Fixed two compile problems, a gccism [320349, patch from
1810 Roland Illig], and a strict-aliasing warning from gcc 4.1.
1812 Changes in libsoup from 2.2.6 to 2.2.6.1:
1814 * Fixed a crash when using SoupSoapMessage
1816 Changes from 2.2.5 to 2.2.6:
1818 * Fixed a crash when canceling a message (from Tambet Ingo)
1820 * Fixed a bug where a connection could be leaked forever in
1821 some circumstances if a request got a 30x, 401, or 407
1822 response, eventually causing a hang when the session hit its
1823 maximum connection limit. (Dan/Tambet)
1825 * Fixed a memory leak. (Tambet)
1827 * Fixed a bug that would sometimes show up when connecting to
1828 a server on localhost [#312540]
1830 * Added some API to SoupServer and SoupSocket to help fix a
1831 long-standing rcd bug.
1833 Changes from 2.2.4 to 2.2.5:
1835 * Win32 support (from Tor Lillqvist)
1837 * Up-to-date API documentation pretty much everywhere
1839 * Basic XMLRPC support (from Mariano Suarez-Alvarez, Fernando
1840 Herrera, and Jeff Bailey)
1842 * New HTTP timestamp-manipulation methods soup_date_parse,
1843 soup_date_generate, and soup_date_iso8601_parse.
1845 * SoupSession now handles relative URLs in the Location header
1846 (in violation of RFC 2616, but in line with how some servers
1849 Changes from 2.2.3 to 2.2.4:
1851 * Fixed a problem with NTLM authentication against
1852 multi-domain servers. [306877]
1854 * Fixed DNS lookups on Solaris. [254551, 268389]
1856 Changes from 2.2.2 to 2.2.3:
1858 * Now compiles against gnutls 1.2.0 [257811]
1860 * Fixed a bug that could result in 100% CPU usage if an SSL
1861 server closed the connection uncleanly. [273352]
1863 Changes from 2.2.1 to 2.2.2:
1865 * The SSL validation fix from 2.2.1 [264414] is now completely
1866 fixed. (Part of the fix didn't actually make it into 2.2.1)
1868 * HTTPS certificate validation now works when using an HTTP
1871 * HTTP proxy code deals better with proxies that try to make
1872 the user do HTML-form-based authentication. [268531]
1874 * 64-bit fixes for NTLM auth code. [270323, from Michael
1877 Changes from 2.2.0 to 2.2.1:
1879 * Updated for a libgcrypt API change between 1.1.9x and 1.2.x
1880 that caused a crash at runtime if you compiled against
1883 * SSL certificate validation failure should now always result
1884 in a status of SOUP_STATUS_SSL_FAILED, rather than getting
1885 turned into SOUP_STATUS_IO_ERROR. [264414]
1888 Changes in libsoup from the 2.0 series (1.99.x versions) to 2.2:
1890 * Most of the libsoup datatypes are now GObjects. (SoupUri
1891 is currently an exception to this.)
1893 * SoupMessage now emits signals at various stages of
1894 processing. (Eg, "wrote_body", "got_headers".) (You
1895 can also still use soup_message_add_*handler().)
1897 * SoupContexts are gone; soup_message_new() now takes a URI
1900 * All formerly global state is now maintained by the
1901 SoupSession object. (This includes the connection pool,
1902 proxy server, cached authentication information, SSL
1905 * You can create a SoupSessionAsync (for 2.0-like
1906 behavior) or SoupSessionSync (for blocking,
1909 * You can add SoupMessageFilter objects to a session
1910 to have certain processing automatically performed
1911 on every message sent via that session. (Eg, setting
1914 * NTLM authentication is no longer supported by
1915 default. You must enable it by setting the
1916 SOUP_SESSION_USE_NTLM flag on the session.
1918 * The preferred method of handling authentication is
1919 now via the "authenticate" and "reauthenticate"
1920 signals on SoupSession. (The old style, of encoding
1921 the user and password information into the url is
1922 also still supported.)
1924 * The SOUP_ERROR_* values are now SOUP_STATUS_* (so that we
1925 don't have "SOUP_ERROR_OK" and the like).
1927 * SOUP_MESSAGE_IS_ERROR() is gone, since some cases
1928 want to include 3xx responses and some don't.
1930 * SOUP_ERROR_CANT_AUTHENTICATE and
1931 SOUP_ERROR_CANT_AUTHENTICATE_PROXY are now gone,
1932 since they didn't carry any information that
1933 SOUP_STATUS_UNAUTHORIZED and
1934 SOUP_STATUS_PROXY_UNAUTHORIZED don't.
1936 * DNS errors now show up as the new status code
1937 SOUP_STATUS_CANT_RESOLVE rather than being mixed in
1938 with SOUP_ERROR_CANT_CONNECT.
1940 * Minimal SOAP support has been added back, via
1941 SoupSoapMessage/SoupSoapResponse
1943 * The HTTP I/O state machine was completely rewritten, fixing
1944 numerous crashes, leaks, and protocol errors.
1946 * SoupUri now conforms to RFC 2396. Mostly.
1948 * Various test programs have been added under tests/
1952 * Support for OpenSSL (which was horribly buggy) and
1953 Mozilla NSS (which was never finished). We only
1954 support GNUTLS for SSL now.
1958 * CGI support in SoupServer