1 Changes in libsoup from 2.37.1 to 2.37.2:
3 * Fixed up the output of SoupDirectoryInputStream, thus
4 improving the display of local directories in WebKit-based
5 browsers. [#662266, Sergio]
7 * Fixed a bug introduced in 2.37.1 that caused some cancelled
8 SoupMessages to be leaked. [#662847, Sergio]
10 * Added new SoupSession properties "http-aliases" and
11 "https-aliases" that allow you to configure more explicitly
12 what URL protocols are treated as aliases for http (eg,
13 "dav:", "webcal:", etc), and which should be recognized as
14 meaning something else, (eg, "ftp:") [Dan]
16 * Added soup_session_would_redirect() and
17 soup_session_redirect_message(), to help users that want to
18 handle some or all redirects themselves. Added
19 soup_message_set_redirect() to make it easier to return
20 redirection responses from a SoupServer. [Dan]
22 * Added the SoupSession "use-thread-context" property, which
23 tells it to use GMainContexts in a gio-compliant way (and in
24 particular, allows having different messages running in
25 different GMainContexts on the same SoupSession, though only
26 to a limited extent since SoupSessionAsync is still not
27 thread-safe). In particular, this was added in order to
28 address WebKit bug 68238. [Dan]
30 * Made SoupURI %-encode non-ASCII characters when parsing
31 URIs, in particular to fix a problem with certain servers
32 sending syntactically invalid redirects that they would then
33 only interpret correctly if you fixed the syntax for them.
34 (@$!@#! Although the new code is probably more correct than
35 the old code anyway, so...) [#662806, Dan]
37 * Fixed a connection-handling bug that could cause problems
38 with servers that requested authentication and then timed
39 out the connection while the application was waiting for the
40 user to enter a password. [#660057, Dan]
42 * Made NTLM and Basic authentication handle some non-ASCII
43 usernames and passwords. (NTLM should handle most. It's
44 impossible to fix Basic in the general case.) [#576838,
45 Joachim Breitner, "sponsored by ITOMIG GmbH and the City of
48 * Added support for "deflate" Content-Encoding, so that we can
49 work with broken servers that insisted on using it even
50 though we explicitly indicated in the request headers that
51 we didn't support it. (@$#!#) [#661682, Sergio]
53 Changes in libsoup from 2.36.0 to 2.37.1:
55 * Fixed a problem with connections being assigned to multiple
56 requests at once after a redirection [#651146, Sergio]. Made
57 soup_session_pause/unpause_message() work in any state, not
58 just while the HTTP I/O is occurring, and used this to add a
59 test case for that bug. [Dan]
61 * Ported SoupSession to use GTlsDatabase internally, and added
62 two new properties, SoupSession:use-system-ca-file (to
63 specify that the session should use the default system
64 tlsdb) and SoupSession:tlsdb (to specify a specific tlsdb to
67 * Likewise, added SoupServer:tls-certificate, for specifying a
68 certificate/key for an https server to use.
70 * Made SoupHTTPInputStream use memory more efficiently.
73 * Fixed soup_message_get_https_status() to return information
74 more reliably (with latest glib-networking).
76 * Bumped the glib requirement to 2.30.0; although libsoup does
77 not use any new glib 2.30 APIs, there are several important
78 bugfixes in glib between 2.28 and 2.30 that libsoup needs.
79 Currently libsoup builds against either glib 2.30.x or glib
82 Changes in libsoup from 2.35.92 to 2.36.0:
84 * Improvements to gtk-doc documentation. [Dan]
86 Changes in libsoup from 2.35.90 to 2.35.92:
88 * Fixed a problem where SoupHTTPRequest response bodies could
89 be truncated. [#659256, Sergio]
91 * Fixed a bug in copying TLS information from SoupSocket to
92 SoupMessage, causing all https connections to be reported as
93 "untrusted" in epiphany. [Dan]
95 * Made SoupSession remove items from its host cache after a
96 while, so that if a host changes IP address, it will
97 eventually try to re-resolve it. [#646959, Sergio]
99 Changes in libsoup from 2.35.5 to 2.35.90:
101 * Added SOUP_MESSAGE_CAN_REBUILD flag, to use with
102 soup_message_body_set_accumulate(FALSE) on a request body,
103 to indicate that the caller will recreate the request body
104 after it has been discarded if the message needs to be
107 * Fixed the build on mingw-w64 by not using "interface" as
108 as variable name. [#656402, Erik van Pienbroek]
110 * (The multihosted https server regression mentioned in the
111 2.35.5 NEWS turned out to be a glib-networking bug, which is
112 fixed as of 2.29.18.)
114 Changes in libsoup from 2.35.4 to 2.35.5:
116 * Support NTLM single sign on via samba's /usr/bin/ntlm_auth.
117 [#650940, Mandy Wu]. This is enabled by default (if NTLM is
118 enabled for the session and the ntlm_auth binary is
119 available), but will fall back to the standard
120 password-based authentication if SSO fails.
122 * Default to TLS+extensions for https connections, falling
123 back to SSLv3-without-extensions (the old default) only if
124 the server fails to negotiate TLS. [#581342]
126 * As a result of this change, some users are currently
127 seeing problems with sites that serve multiple https
128 hosts from a single IP address (eg,
129 *.launchpad.net). There is no known workaround at
132 * Fixed a longstanding problem with https pages sometimes not
133 loading when using a proxy. [#631368, based on patches from
134 DongJae Kim and Thierry Reding]
136 * SoupContentSniffer: don't use gio's sniffing rules, since
137 the spec now recommends that browsers not do any additional
138 sniffing beyond what's in the spec. [#648846, "arno"]
140 * Fixed SoupRequestHTTP to work properly with alternate
141 GMainContexts. [#653707]
143 * Added some annotations from Vala's vapi files. [#655397,
144 Evan Nemerson]. Also, removed SoupProxyResolver from the
145 gir/typelib, since it had been deprecated since before
146 introspection was available, and it was being scanned wrong
149 Changes in libsoup from 2.35.3 to 2.35.4:
151 * CVE-2011-2524: Fixed a security hole that caused some
152 SoupServer users to unintentionally allow accessing the
153 entire local filesystem when they thought they were only
154 providing access to a single directory. [#653258]
156 * Plugged another SoupCache memory leak [Xan]
158 * Simplified SoupCache keys, and handle collisions. [#649963,
161 * Annotate SoupSession:add-feature, etc, as (skip), so they
162 don't conflict with the methods of the same name. [#655150,
165 Changes in libsoup from 2.34.1 to 2.35.3:
167 * SoupCache fixes [Sergio]:
169 * Don't store hop-by-hop headers [#650094]
171 * Fix status code and headers of responses returned
172 from the cache after being revalidated [#649965]
174 * Added versioning support to the cache file format
175 [#652554] and extended it to keep track of the
176 status code [#649965]
178 * Fixed storage of time values in the cache [#653349]
180 * Fixed a use-after-free that could result in bogus
181 data being written to the cache [#650620]
183 * Various leaks [#649309]
185 * Work around an Apache bug where it tells browsers to
186 automatically decode .gz files but still keep the .gz in the
189 * Fixed an overflow when sending a response larger than 2^31
190 bytes (eg, streaming movies in Rygel). [#638468, Jens Georg]
192 * Always send the Keep-Alive header, not just to hosts we
193 already know to be HTTP/1.0 [#648680, Sergio]
195 * Fixed various leaks [#652699, Sergio], [#651643, Milan],
198 * Minor build fix for Debian/Ubuntu [#648948]
202 Changes in libsoup from 2.34.0 to 2.34.1:
204 * Two multipart forms/Content-Disposition fixes [Dan]:
206 * UTF-8-encoded header encoding/decoding rules updated
207 to match RFC 5987. In particular, a UTF-8-encoded
208 filename parameter in Content-Disposition will now
209 override an ASCII one.
211 * When not using UTF-8-encoded filenames in
212 Content-Disposition, always quote the filename,
213 since some servers erroneously fail to handle
214 non-quoted ones. [#641280]
216 * Fixed several memory leaks [Dan, Xan]
218 * Fixed decoding base64 data: URLs [#646896, Sergio]
220 * Simplified the libsoup-gnome build on Windows by dropping
221 the gnome-keyring dependency. [Fridrich Štrba]
223 * Fixed a bug in soup_uri_to_string() in which (invalid) port
224 numbers could be output as negative numbers (tripping up a
225 WebKit "sanity checking" test). [#647767, Sergio]
227 * Fixed a cache corruption bug in SoupCache. [#648285, Sergio]
229 * Fixed a crash in SoupSessionSync when using
230 soup_session_abort().
232 Changes in libsoup from 2.33.92 to 2.34.0:
234 * Fixed the GMainContext handling of the new
235 SoupProxyResolverDefault (which among other things fixes
236 gstreamer usage inside epiphany). [#646201, Sebastian Dröge]
238 * Tweaked the introspection Makefile rules to fix a problem
239 building on Debian/Ubuntu. [#645505]
241 * Belated bumped the shared library versioning to reflect the
242 API additions since 2.32.0
244 Changes in libsoup from 2.33.90 to 2.33.92:
246 * LIBSOUP NO LONGER DEPENDS ON GCONF OR LIBPROXY.
249 * Added SoupProxyResolverDefault, which uses uses gio's
250 GProxyResolver to resolve proxies [#642982, Gustavo Noronha
251 Silva]. Despite the "default" in the name, it is not used by
252 default, for compatibility reasons, but it is available in
253 plain libsoup, not libsoup-gnome. (Of course, it depends on
254 having glib-networking installed.)
256 * Updated SoupProxyResolverGNOME to be based on
257 SoupProxyResolverDefault, but explicitly requesting the
258 "gnome" GProxyResolver if it is available [#625898], and
259 removed the old code that used GConf and libproxy directly.
261 * Added soup_server_disconnect(), to explicitly disconnect a
262 SoupServer, since it is not possible to g_object_unref() it
263 from memory-managed language bindings. [#638576, Andreas
266 * SoupDate now parses month names case-insensitively [#644048,
269 * Avoid a g_return_if_fail() when using
270 SOUP_COOKIE_JAR_ACCEPT_NO_THIRD_PARTY with non-http URIs
271 (file:, data:, etc). [#643226]
273 * SoupCookieJar now catches overflows when parsing very
274 distant dates [#643462, based on a patch from Mark
277 * Fixed a buggy interaction between request body streaming and
278 restarted requests [David Woodhouse]. Added some new tests
279 to tests/chunk-test.c to make sure that a specific
280 (unsupported!) way of using those methods would not get
281 broken in the future.
283 * Fixed soup_socket_get_remote_address(), which had been
284 broken since 2.33.4 (and which in turn caused
285 soup_client_context_get_address/_get_host to be broken).
288 Changes in libsoup from 2.33.6 to 2.33.90:
290 * Attempted to make libsoup's dependency on glib-networking
291 (for TLS support) more explicit, by requiring that
292 glib-networking be present at compile time unless the
293 builder explicitly passes "--disable-tls-check", and noting
294 that packagers should give libsoup a runtime dependency on
297 * Fixed a bug in talking to servers with virtual hosts with
298 Unicode names (IDNs) [#642075]
300 * Added a "Connection: Keep-Alive" header when talking to
301 HTTP/1.0 hosts, to improve performance. [#640414, Sergio
304 * Changed SoupCache to not cache multipart/x-mixed-replace
305 content. [#642028, Sergio Villar Senin]
307 Changes in libsoup from 2.33.5 to 2.33.6:
309 * Made SoupSessionAsync do idle-connection cleanup more
310 sanely, resulting in faster load times for pages with lots
311 of subresources. [#639768, Sergio Villar Senin]
313 * Fixed soup_form_decode()'s behavior (and by extension,
314 SoupServer query string handling) with datasets that contain
315 multiple values for the same key, and added a test case.
316 [#639783, Sven Neumann]
318 * Fixed warnings pointed out by gcc 4.6, including a bug in
319 SoupCache that would cause unnecessary revalidations
322 * Belated copied a fix from the WebKit copy of soup-cache.c
323 into ours, and fixed a bug in the local copy of
324 soup-request-data.c [#641022, Sergio Villar Senin], in
325 preparation for making WebKit use the libsoup versions.
327 Changes in libsoup from 2.33.4 to 2.33.5:
329 * Fixed certain cases of soup_session_cancel_message() with
330 SoupSessionSync that could previously cause warnings or
333 Changes in libsoup from 2.32.2 to 2.33.4:
335 * SoupSocket now uses GSocketConnection and GTlsConnection
336 internally rather than making socket calls directly and
337 using GIOStream, and TLS is handled via glib's APIs rather
338 than using gnutls directly.
340 * The gzip Content-Encoding handler is now implemented using
343 * As a result of the above two changes, libsoup no longer
344 directly depends on gnutls, libgcrypt, or zlib, though it
345 still indirectly depends on zlib via glib and libxml2. Also,
346 although libsoup does not depend on glib-networking as a
347 build-time dependency, some "make check" tests will be
348 skipped if it is not installed.
350 * The SoupRequest/SoupCache code from WebKit has been
351 imported, but it is not yet recommended for general use, and
352 is not necessarily API stable. [#523100, Sergio Villar, with
353 the SoupRequest parts based on the Summer of Code work by
354 Gabriel Corvalan and the cache parts based on an earlier
357 * Added SoupMessage:tls-certificate and
358 SoupMessage:tls-errors, which give more information about
359 the certificate used to authenticate a TLS connection.
361 * It is now possible to disable Basic or Digest auth in a
362 session by using soup_session_remove_feature_by_type() with
363 SOUP_TYPE_AUTH_BASIC or SOUP_TYPE_AUTH_DIGEST. Likewise, the
364 right way to enable NTLM support now is to call
365 soup_session_add_feature_by_type() with SOUP_TYPE_AUTH_NTLM;
366 SOUP_SESSION_USE_NTLM is now deprecated.
368 * Allow setting cookies on file:// URIs, since other browsers
369 do, and WebKit has a test for it. [#603825]
371 * .gir/.typelib files now include C header/library information
372 (needed by vala and some other bindings) [#635395, Evan
375 * Added annotations on soup_message_headers_get_content_type()
376 [Lucas Rocha] and SoupHTTPVersion [John Palmieri]
378 * Fixed a Set-Cookie processing leak [#636741, Jonathan
381 Changes in libsoup from 2.32.1 to 2.32.2:
383 * Fixed a regression in 2.32.0 that caused evolution-exchange
384 to get stuck and stop updating. [#634422]
386 * Fixed a regression in 2.32.0 with apps using asynchronous
387 sessions from multiple threads (in particular, gupnp)
390 * Fixed the regression test for #631525 to not cause spurious
391 "make check" failures on some machines.
393 Changes in libsoup from 2.32.0 to 2.32.1:
395 * Fixed a regression in 2.32.0 with the use of persistent
396 connections that caused spurious "Connection terminated
397 unexpectedly" errors. [#631525, debugged by Sergio Villar]
399 * Fixed a regression in 2.32.0 that caused proxy-related
400 DNS errors to return SOUP_STATUS_CANT_RESOLVE rather than
401 SOUP_STATUS_CANT_RESOLVE_PROXY.
403 * Usernames/passwords specified explicitly in request URIs now
404 override existing cached auth info. [#631679, Sergio Villar]
406 * Changed soup_uri_decode() and soup_uri_normalize() to just
407 ignore malformed %-encoding rather than returning NULL,
408 for consistency with soup_uri_new(). [#630540]
410 * Fixed soup_form_decode() to ignore invalid parameters,
411 and soup_form_encode_hash() to just g_return_if_fail()
412 rather than crashing if there are NULL values in the
415 * Added another workaround for stupid servers that close the
416 connection before returning the full response (in this case,
417 when using chunked encoding and failing to include the
418 final 0-length chunk). [#629160]
420 * Fixed a bug in SoupCookieJarText that deleted excess cookies
421 whenever any cookie expired. [#631641, Michał Kazior]
423 * Fixed a small leak in SoupContentDecoder if you were using
424 it incorrectly. [pointed out in email by Christophe
427 * Added regression tests for passwords-in-URIs [#631679,
428 Sergio Villar] and SOUP_SESSION_IDLE_TIMEOUT.
430 Changes in libsoup from 2.31.92 to 2.32.0:
432 * (No changes, just a version bump)
434 Changes in libsoup from 2.31.90 to 2.31.92:
436 * Updated for gobject-introspection 0.9.5. Also added some new
437 annotations and removed a bunch of private headers from the
440 * Percent-encoded characters in URIs are no longer
441 automatically normalized to uppercase, since apparently some
442 servers are stupid. [#628728, Sergio Villar Senin]
444 * Fixed a crash when resolving a URI containing both spaces
445 and non-UTF8 8bit characters. [#629449]
447 Changes in libsoup from 2.31.2 to 2.31.90:
449 * libsoup now tries to connect to each IP address associated
450 with a hostname, if the first one fails. In particular, if a
451 host has both IPv4 and IPv6 addresses, and only one of them
452 is reachable from the current host, libsoup will now try the
453 other one rather than failing. (libc is supposed to sort the
454 IP addresses in the right order, such that, eg, if you don't
455 have IPv6 connectivity, it will put the IPv4 address first.
456 For some reason though, this seems to be broken on some
459 * Fixed Accept-Language header generation in locales where ","
460 is used as the decimal point.
462 Changes in libsoup from 2.31.2 to 2.31.6:
464 * Disabled TLS 1.2 in addition to the already-disabled 1.1 and
465 1.0 [see below, in libsoup 2.27.2], thus making libsoup
466 usable with gnutls 2.10. [#622857. This commit, 01a43ad9,
467 can be applied to libsoup 2.30.x as well if you need that
468 release to work with gnutls 2.10.]
470 * When using libproxy 0.3 or newer, libsoup no longer leaks
471 proxy-related environment variables into child processes
474 * Changed the way message/connection binding works in
475 SoupSession so that (among other things), when there are
476 multiple requests queued to a host, and one of them gets a
477 network error, the other requests are still allowed to try
478 to succeed, rather than all failing immediately. [#619633]
480 * SoupSession now limits the number of times a message can be
481 redirected, to avoid infinite loops [#604383, José Millán
484 * Fixed handling of certain messages where the response
485 headers included "Connection: close" but the server did not
486 actually close the connection at the end. [#611481]
488 * Fixed some incorrect g-i annotations [#621021]
490 * Fixed an out-of-bounds memory access when processing certain
491 Set-Cookie headers [#620288]
493 * Improved msg->reason_phrase on network errors [#623274]
495 * Fixed gir file disting [#621727, Yaakov Selkowitz]
497 Changes in libsoup from 2.30.1 to 2.31.2:
499 * gobject-introspection has now been merged in. Use
500 --enable-introspection to build. [#576595, Andreas Rottmann]
501 Note that the introspected API is not yet stable, and in
502 particular, there are numerous values annotated as "utf8"
503 which are actually not guaranteed to be utf8. (Eg, most
506 * Added some helper functions for bindings:
507 soup_buffer_new_take(),
508 soup_message_body_append_take(), and
509 soup_buffer_get_data(). [#576595, Andreas Rottmann]
511 * Also added properties for several SoupMessage public
512 fields, and getter methods for various boxed types
513 (SoupCookie, SoupDate, SoupURI).
515 * Added some additional hash-table annotations.
516 [#619086, Gustavo Noronha Silva]
518 * Marked SoupSession abstract. [#617216, Lorenzo Gil, the
519 first bug filed by someone trying to use libsoup via
520 introspection!] Likewise for SoupAuth and SoupAuthDomain.
522 * Fixed a problem with SoupSessionAsync that would cause
523 messages to get lost if you aborted a previous message while
524 it was still looking up the hostname. Fixed several other
525 problems that were discovered while adding a regression test
526 for that. [#618641, thanks to Claudio Saavedra for a good
529 * Fixed another connecting-to-lame-http-server problem, and a
530 getting-stuck-in-a-loop-reconnecting bug that it revealed.
533 Changes in libsoup from 2.30.0 to 2.30.1:
535 * Fix for https through proxies that close the connection when
536 returning a "407 Proxy Authentication Required" response,
537 and add a regression test for that case. [#611663]
539 * Fixed multiple forms/multipart-related interoperability
540 problems reported by Egon Andersen:
542 * Don't quote the multipart boundary string if it's
543 not needed, since RFC 2616 recommends that you
544 don't, and some servers don't handle quotes there
545 correctly. (Sigh.) [#614176]
547 * Don't put an extra blank line before the first
548 multipart part, since it's unnecessary and some
549 servers don't handle a multipart preamble correctly.
552 * Don't put Content-Transfer-Encoding headers in the
553 multipart/form-data parts, even though the HTML 4
554 spec says you must, since no other browsers do, and
555 some servers don't handle them correctly. (Sigh.)
558 * Changed SoupCookieJarSqlite to actually erase deleted
559 cookies from the database. [#615711, Lukasz Slachciak]
561 * Fixed SoupLogger to be more robust against getting passed
562 bad data by the session. [#611663]
564 * Fixed SoupAuthDomain to ignore paths when doing proxy auth
566 * Fixed a g_warning when hovering over a javascript link in
567 WebKit. [#613442, Xan Lopez]
569 Changes in libsoup from 2.29.91 to 2.30.0:
571 * Fixed a crash in the whitespace-stripping code in
572 soup_uri_new() [#612644, "arnaud.lb"]
574 * Update content-sniffing algorithm to match Chrome and the
575 soon-to-be-updated sniffing spec. [#611502, Gustavo Noronha
578 * We now handle "Content-Encoding: x-gzip" as well as "gzip"
579 (even though "x-gzip" has been deprecated for more than 10
582 * Fixed leaks found by valgrind
584 * Make the "make check" programs only bind to 127.0.0.1, not
585 any public network interfaces. [#609489, Saleem Absulrasool]
587 * Add a test to sniffing-test to make sure that Content-Type
588 parameters are preserved correctly. [Gustavo Noronha Silva]
590 Changes in libsoup from 2.29.90 to 2.29.91:
592 * Added SOUP_SESSION_SSL_STRICT and
593 SOUP_MESSAGE_CERTIFICATE_TRUSTED, to allow callers to
594 determine if an https response comes from a server with a
595 recognized/valid or unrecognized/invalid certificate.
596 [#610374, Gustavo Noronha Silva]
598 * Fixed handling of certain badly-formatted URIs [#590524]
600 Changes in libsoup from 2.29.6 to 2.29.90:
602 * Added soup_cookie_jar_set_accept_policy() and related API
603 for implementing cookie acceptance policies. [#608353, Xan
606 * Fixed the "request-read" signal in SoupServer to actually be
609 Changes in libsoup from 2.29.5 to 2.29.6:
611 * Fixed SoupContentDecoder to ignore trailing junk after the
612 encoded message body (as other browsers do), rather than
613 getting stuck in an infinite loop. [#606352]
615 * Fixed an invalid read in soup_cookie_applies_to_uri()
616 [#607024, pointed out by Xan]
618 * Fixed linking on OS X [#606959]
620 * Removed a harmless warning in SoupServer. [#606645]
622 Changes in libsoup from 2.29.3 to 2.29.5:
624 * Added SoupContentDecoder, providing support for
625 Content-Encoding: gzip for WebKitGTK. [#522772]
627 * Added "accept-language" and "accept-language-auto"
628 properties to SoupSession, to support the Accept-Language
629 header. [#597004, Mario Sanchez Prada]
631 * Fixed a bug in SoupPasswordManagerGNOME that could cause
632 crashes if you typed the wrong password once and then tried
633 again. [#595554, debugged by Gustavo Noronha Silva]
635 * Fixed a crash in SoupAuthDigest if the server claims support
636 for both qop=auth and qop=auth-int. (This was not noticed
637 sooner because no one actually supports qop=auth-int, and
638 the server in question here was probably confused. :)
640 * Updated cookie parsing/output to more closely match
641 draft-ietf-httpstate-cookie-00. [Also fixes #603496 (WebKit
642 unit test), and #604794 (hang parsing malformed Set-Cookie
645 * Fixed https-via-proxy to not hang if there is an error
646 communicating with the proxy immediately after the TLS
647 negotiation. [#587528]
649 * Fixed a bug that broke gobject-introspection's introspection
650 of libsoup. [#603696, Vincent Untz]
652 * Handle spurious CR/LFs between responses. [#602863,
653 Alexander V. Butenko]
655 * Fixed soup-message-client-io to not erroneously include URI
656 fragments on the Request-Line when sending via a proxy.
657 [Related to WebKit bug #28687]
659 * Fixed Digest authentication against certain (buggy?)
660 clients/servers that require you to use quotes in exactly the
661 same places where the spec uses them. [#582219]
663 * Fix ugly gtype-related hack to work with the latest unstable
664 glib. [Benjamin Otte]
666 Changes in libsoup from 2.28.1 to 2.29.3:
668 * Fixed a crash in SoupCookieJarSqlite when using cookie
669 databases not created by libsoup (eg, upgraded epiphany
670 installations). [Patch from Emilio Pozuelo Monfort]
672 * Fixed SoupCookieJar to handle non-http URIs properly (so
673 that, eg, JavaScript bookmarklets that try to set/read
674 cookies won't cause crashes). [#602498]
676 * HEAD requests that receive a "303 See Other" response will
677 now do a HEAD, not a GET, on the redirected-to resource.
678 Fixes gvfs access to some sites, including certain
679 youtube.com URIs. [#600830]
681 * Fixed a g_warning that would always trigger in the
682 server-side SoupCookie code. [#602389]
684 * Fixed the server-side SoupMultipart code to be able to parse
685 multiparts containing binary attachments, rather than
686 rejecting them as malformed. [#601640]
688 * Fixed the Request-Line format in the https-over-proxy case.
689 Among other things, this fixes access to bugzilla.gnome.org
690 from WebKitGTK-based browsers. [#598277, #600826]
692 * Fixed a leak in SoupSession if a message was cancelled while
693 the initial socket connection was in progress. [#596074,
694 debugged by Arnout Vandecappelle]
696 * Fixed server-side parsing of Digest auth. [#602898, Chris
699 * Fixed WinSock initialization on Windows. [#600689, Tor
702 * Fixed a sporadic crash in the SSL code on Windows. [#600748,
705 * Fixed handling of https connections with timeouts on
706 Windows. [#600749, Tor Lillqvist]
708 * Added soup_session_prepare_for_uri(), to allow DNS
709 prefetching for faster browsing. [#598948, José Millán Soto]
711 * SoupSession now avoids redundant DNS lookups again when
712 first connecting to a new site, resulting in (probably
713 imperceptibly) faster loads.
715 * Added some debugging APIs to SoupConnection and SoupSession
716 for use by, eg, epiphany's soup-fly extension. [#589163,
719 Changes in libsoup from 2.28.0 to 2.28.1:
721 * libsoup will now attempt to make multiple connections to a
722 server at once when there are multiple messages queued to
723 that server. The previous behavior (only allowing a single
724 pending connection to each server) resulted in slow load
725 times on pages with lots of subresources (images, css, js,
726 etc) on servers that disallow persistent connections.
729 * There should now be fewer (no?) "Connection terminated
730 unexpectedly" errors in WebKitGTK.
732 * Fixed a crash in SoupCookieJarSqlite [#596859, patch from
735 * Fixed soup_address_get_physical() and address-to-name
736 resolution of SoupAddress [patch from Enrico Tröger].
738 * Fixed a bug in SoupContentSniffer that could cause false
739 negatives [#597545, patch from Alejandro Castro].
741 * Fixed the configure error if you have gnutls-devel but not
742 gcrypt-devel installed [#587709].
744 Changes in libsoup from 2.27.92 to 2.28.0:
746 * Fixed a handful of leaks found with valgrind, including a
747 large one in SoupContentSniffer [WebKit bug 28148].
749 * Changed the behavior of SoupCookieJarSqlite to improve
750 performance. [#584522, patch from Gustavo Noronha Silva]
752 * Fixed a crash in SoupSocket that affected gupnp. [#594951,
753 patch from Olivier Crête]
755 * Fixed the type of the SOUP_METHOD_* and SOUP_URI_SCHEME_*
756 macros to be const char * rather than gpointer. [#594508]
758 Changes in libsoup from 2.27.91 to 2.27.92:
760 * Removed SoupPasswordManager from the public API until its
761 problems can be addressed. Although it is still present, you
762 need to #define a special symbol for it to be visible in the
763 header files; see #594377 for details.
765 * Fixed a bug where empty query components were dropped from
768 * Fixed "make check" to work (but warn) when building with
771 * Fixed some small documentation bugs pointed out by Dominik
772 Bylica and Lucian Langa.
774 Changes in libsoup from 2.27.90 to 2.27.91:
776 * Added SoupPasswordManager, an interface for managing
777 persistent password storage, and SoupPasswordManagerGNOME
778 (in libsoup-gnome), which implements it using gnome-keyring.
779 tests/get.c provides a minimal example of how to use it.
781 * libsoup should now notice when the server closes a
782 persistent connection, and close its side of the connection
783 sooner. This should hopefully fix the spurious "Connection
784 terminated unexpectedly" errors in WebKitGTK. [#578990]
786 * Fixed some problems with connection management in
787 SoupSession that could cause a session to eventually "stall"
788 and be unable to process new requests. [#592084]
790 * Fixed an infinite loop that caused 100% CPU usage if the
791 network went down at exactly the right time while there were
792 unsent messages in the queue. [#592492]
794 * Fixed a crash in SoupLogger. [#591857]
796 * Fixed the definition of soup_message_is_keepalive() for
797 HTTP/1.0 messages, to fix a problem introduced in 2.27.90
798 where some messages would load completely but never emit
801 * Fixed a crash in SoupServer introduced in 2.27.90 when
802 processing a request with no "Host" header.
804 Changes in libsoup from 2.27.5 to 2.27.90:
806 * libsoup now uses glib's GResolver rather than its own DNS
807 code. For 2.27.90, the only visible change should be that
808 internationalized domain names are now supported. [#548287]
810 * Added soup_message_disable_feature(), which allows you to
811 disable particular features (eg, cookies, proxy,
812 content-sniffing, etc) on a per-message basis. [#574773]
814 * It is now possible to implement "OPTIONS *" in a SoupServer;
815 you must explicitly register a handler for "*" in order to
818 * Ignore Content-Length on EOF-terminated responses, to match
819 other browsers and therefore cope with broken servers that
820 send the wrong length. [Patch from Benjamin Otte.]
822 * Fixed the status code when trying to fetch an https URI with
823 a non-gnutls build of libsoup. [#590464]
825 * Fixed strict-aliasing warnings introduced in 2.27.4
828 * Fixed some warnings noted by fortify [#591226] and -Wextra.
830 * libsoup now uses automake 1.11's silent-rules support by
831 default (if you are building with automake 1.11). Use
832 "./configure --disable-silent-rules" or "make V=1" to
835 Changes in libsoup from 2.27.4 to 2.27.5:
837 * Fixed a crash when a web server redirected a request to a
838 non-http URI (eg, "about:blank"). [#528882]
840 * Fixed a hang when trying to create an attachment on certain
841 bugzilla installations from epiphany. [#584645]
843 * Fixed verification of V1 TLS certificates [#589323, Patrick
846 * Fixed compile problems on Windows (in the ssl code), and on
847 Linux (when the most recent version of gtk-doc was
850 Changes in libsoup from 2.27.2 to 2.27.4:
852 * Added SoupContentSniffer and the "content-sniffed" signal on
853 SoupMessage, to do Content-Type sniffing per the HTML5 /
854 draft-abarth-mime-sniff algorithm. [#572589, Gustavo Noronha
857 * Updated the earlier SoupSession timeout fixes ([#574414],
858 [#578928]) so that async connect() also times out [#588177,
859 Mark Nauwelaerts] and SSL works on Windows again [#587910,
862 * Fixed the behavior on a 301 response to a POST to match
863 real-world usage rather than what the spec says. (We were
864 doing the right thing on 302 and 303, but had missed 301.)
867 * Changed configure so that if GNUTLS isn't found then it
868 errors out, rather than silently building an SSL-less
869 libsoup. Configure with --disable-ssl if you actually don't
872 Changes in libsoup from 2.27.1 to 2.27.2:
874 * Replaced SoupProxyResolver with SoupProxyURIResolver, which
875 is a bit simpler, works with non-HTTP URIs (and so could be
876 used by gvfsd-ftp) and supports proxy auth correctly.
879 * Fixed SoupSession to not try to resolve http server
880 hostnames when it's just going to pass the hostname off to a
881 proxy server anyway. This fixes things on hosts that use a
882 proxy for everything and have no working DNS config
883 [#577532] and also makes WebKitGTK behave more like other
884 browsers in terms of per-host connection limits (we now
885 limit connections based on hostname rather than on IP
888 We also no longer set the AI_CANONNAME flag when calling
889 getaddrinfo(), which saves us a little bit of unnecessary
890 network traffic. [Pointed out by Christophe Gillette on the
893 * libsoup now always uses SSL 3.0 (not TLS 1.0 or 1.1) for
894 https URIs, to work around problems with older servers that
895 don't implement the (apparently quite confusing) TLS/SSL
896 compatibility rules correctly. Makes a bunch of
897 previously-inaccessible sites now accessible in WebKitGTK
898 (notably PayPal) [#581342]. Will eventually be revisited, to
899 first try TLS 1.1 and fall back if that fails.
901 * Fixed Digest auth to (recent) Apple CalDAV servers.
904 * Changed the way the SoupSession "authenticate" signal works
905 a bit. We now never emit "authenticate" before sending a
906 request, even if we know for sure that it's going to fail,
907 because this makes the semantics of the authenticate handler
908 too complicated (and because we'll only get into this
909 situation if a previous call to the authenticate handler
910 failed anyway). Fixes problems in WebKitGTK when you cancel
911 a password dialog, and then later try to load the page
912 again. [#583462, mostly figured out by Gustavo Noronha
915 * Fixed a bug in the CRLF-vs-LF patch (#571283) that caused
916 libsoup to fail to parse the response headers (returning
917 SOUP_STATUS_MALFORMED) if a CR LF got split across two
920 * Allow using PUT in soup_form_request_for_data(), to work
921 with certain broken web APIs. [#581860, Ross Burton]. Also,
922 fixed a problem with empty POST bodies that made some parts
923 of gmail not work in WebKitGTK.
925 * Applied some minor bugfixes to configure.in and autogen.sh
926 [#583911, #583942]. Fixed configure.in to not use gcc
927 warning options that the installed version of gcc doesn't
930 * Added G_GNUC_NULL_TERMINATED and G_GNUC_PRINTF to a few
931 methods that should have had them. [#581754, Ross Burton]
933 Changes in libsoup from 2.26.1 to 2.27.1:
935 * SOUP_SESSION_TIMEOUT now works properly with
936 SoupSessionAsync [#574414] and SSL [#578928]. Added
937 tests/timeout-test to test this.
941 * soup_date_to_string() now handles SOUP_DATE_RFC2822
942 [#579055, Enrico Tröger]
944 * soup_date_new_from_string() now accepts 24:00 as a
945 time in ISO8601 timestamps
947 * soup_date_to_string() now coerces the date to UTC
948 for HTTP and cookie dates, and outputs the UTC
949 correct offset for the other date types.
951 * Added regression tests to tests/date
953 * soup_headers_parse() now completely ignores
954 syntactically-incorrect headers, rather than passing them to
955 soup_message_headers_append() and causing a g_warning.
956 soup_message_headers_append() now also rejects 0-length
957 header names. Updated tests/header-parsing to check this.
960 * Fix a crash when cancelling a message from a "restarted"
961 handler, and updated a regression test to notice the
962 underlying cause. [#580193]
964 * Completing the API updates for #576760 from 2.26.1,
965 soup_message_headers_get() is now marked deprecated in favor
966 of soup_message_headers_get_one() and _get_list().
968 Changes in libsoup from 2.26.0 to 2.26.1:
970 * libsoup uses libproxy for PAC and WPAD proxy resolution
971 again. However, it arranges to do all communication with
972 GConf itself, to ensure that libproxy doesn't call it in
973 non-thread-safe ways. [#571527] Also, fixed a bug in
974 SoupSessionSync when proxy resolution failed. [#574957,
975 patch from Milan Crha].
977 (Also fixed three SoupProxyResolverGNOME bugs since the
978 2.26.0.9 preview release. [#578746, #578809])
980 * SoupURI now handles unencoded spaces in URIs. In particular,
981 redirects via Location headers with spaces in them now work.
984 * libsoup can now deal with servers (and clients) that
985 erroneously use LF LF instead of CR LF CR LF to separate
986 the headers and body. [#571283]
988 * Added soup_message_headers_get_one() and
989 soup_message_headers_get_list(), which will eventually
990 deprecate soup_message_headers_get(). This lets applications
991 deal correctly with implementations that erroneously send
992 multiple copies of single-valued headers. [#576760]
994 * In particular, soup_message_headers_get_content_type() now
995 ignores duplicate Content-Type headers [#576760] and also
996 ignores syntactically-incorrect Content-Type headers.
999 * SoupCookieJar can now store multiple cookies with the same
1000 domain and name, but different paths. [#577360]
1002 * Abnormal SSL connection closes are now treated as ordinary
1003 EOFs, for compatibility with certain sites. [#577386]
1005 * soup_header_g_string_append_param() now allows NULL values.
1008 * soup_message_headers_append() now rejects header names and
1009 values with newlines or certain other illegal data in them,
1010 rather than generating syntactically invalid headers.
1012 * Fixed a small bug in soup_date_new_from_string's ISO 8601
1013 handling [qv #578369 for g_time_val_from_iso8601].
1015 * The regression tests now work correctly on machines where
1016 "localhost" resolves to "::1" instead of "127.0.0.1".
1017 [#576583, patch from Andreas Rottmann]
1019 * Fixed warnings when a message has a network problem when
1020 many other messages are queued. [#578809]
1022 * Miscellaneous documentation fixes/clarifications.
1024 Changes in libsoup from 2.25.91 to 2.26.0:
1026 * Temporarily disable libproxy support to work around a bug in
1027 its gnome plugin that causes gvfsd-http (and probably
1028 eventually other apps) to crash. [#571527]. For now,
1029 SoupProxyResolverGNOME uses only GConf. To be fixed in
1032 * Fixed a bug that showed up in WebKit, where if many messages
1033 were queued all at once to a server that doesn't support
1034 persistent connections, some of the requests will get lost.
1035 #574365, reported by Xan Lopez.
1037 * Fixed SoupServer to support using SOUP_ENCODING_EOF, so you
1038 can stream responses of unknown length to HTTP/1.0 clients.
1039 [#572153]. Added a regression test for this, and for chunked
1040 and Content-Length-based streaming.
1042 * Fixed several bugs that prevented SoupCookieJarSqlite from
1043 working. [#572409, patch from Xan Lopez]
1045 * Added G_{BEGIN,END}_DECLS guards to public headers that were
1046 missing it. (Xan Lopez)
1048 * Misc gtk-doc improvements
1050 Changes in libsoup from 2.25.5 to 2.25.91:
1052 * Fixed a crash in SoupProxyResolverGNOME when the proxy
1053 requires authentication. (This does not make proxy
1054 authentication *work* yet, it just makes it not crash.)
1056 * Updated documentation
1058 Changes in libsoup from 2.25.4 to 2.25.5:
1060 * SoupProxyResolverGConf (which was incomplete) is gone, and
1061 libsoup-gnome now requires libproxy, which is now officially
1062 an external dependency of GNOME.
1064 * Fixed a bug in SoupCookieJar that was making it send
1065 "Cookie: (null)" when it had no cookies for a site, which
1066 confused some web servers (WebKit bug 23240).
1068 * Fixed a bug with using SOUP_MEMORY_TEMPORARY buffers and
1069 soup_message_body_set_accumulate(FALSE). (Part of WebKit bug
1070 18343, noticed by Gustavo Noronha Silva.)
1072 * Fixed the build with non-gcc compilers
1074 Changes in libsoup from 2.25.3 to 2.25.4:
1076 * Added soup_session_get_feature() and
1077 soup_session_get_features(), to query the features currently
1078 available in a session (which is needed by the patch in
1079 https://bugs.webkit.org/show_bug.cgi?id=22624)
1081 Changes in libsoup from 2.25.2 to 2.25.3:
1083 * Fixed a crash when using both cookies and a proxy. [#562191,
1086 * Fixed soup_form_decode() to correctly handle forms with
1087 URI-encoded parameter names [#563302, Evan Nemerson] and
1088 added a regression test.
1090 * Fixed a crash in SoupProxyResolverGConf. [#563145]
1092 Changes in libsoup from 2.25.1 to 2.25.2:
1094 * Fixed client behavior when presented with multiple auth
1095 types to choose the *strongest* auth type (eg, Digest)
1096 rather than the *weakest* one [#562339, Pontus Oldberg].
1097 Added a regression test for this.
1099 * Moved libsoup-gnome headers to a different directory to make
1100 it easier to split libsoup and libsoup-gnome into separate
1101 packages, and to ensure that things that only want to be
1102 looking at plain libsoup headers (like gir-repository) don't
1103 accidentally see the libsoup-gnome ones.
1105 * Some minor doc fixes
1107 * Fixed libsoup-gnome linking with --as-needed. [#559342]
1109 Changes in libsoup from 2.24.1 to 2.25.1:
1111 libsoup 2.25.1 introduces a new library, libsoup-gnome, which
1112 will be used for features which are important to GNOME apps,
1113 but which require GNOME-specific libraries that non-GNOME apps
1114 may not want to add dependencies on.
1116 In 2.25.1, libsoup-gnome contains:
1118 * SOUP_TYPE_PROXY_RESOLVER_GNOME, a SoupSessionFeature
1119 type that can be added to a SoupSession to provide
1120 automatic proxy handling via the GConf proxy keys. (See
1121 below) The default implementation uses libproxy, which
1122 also handles WPAD, PAC, etc, but if libproxy is not
1123 available it will use GConf directly, supporting only
1124 the basic HTTP proxy functionality.
1126 * SoupCookieJarSqlite, a SoupSessionFeature that handles
1127 cookies and stores them in a Firefox 3-compatible sqlite
1128 file. (This is not actually a "GNOME-specific" feature,
1129 but I didn't want to make libsoup itself depend on
1130 sqlite, and I didn't want to make the dependency
1131 optional. This might change before 2.26.)
1133 * SOUP_TYPE_GNOME_FEATURES_2_26: a SoupSessionFeature type
1134 that can be added to a SoupSession to add all
1135 GNOME-integration features that are available for 2.26;
1136 as of 2.25.1, this is just the GNOME proxy resolver, but
1137 by 2.26.0 it may also include gnome-keyring support and
1138 possibly other features.
1140 Applications/libraries that are currently doing GConf proxy
1141 lookup by hand can be updated as follows:
1143 * Remove all of the existing code that listens to the
1144 GConf keys and sets SOUP_SESSION_PROXY_URI
1146 * Change the configure check to require
1147 "libsoup-gnome-2.4 >= 2.25.1" instead of "libsoup-2.4"
1149 * #include <libsoup/soup-gnome.h>
1151 * After creating your SoupSession, do:
1153 soup_session_add_feature_by_type (session, SOUP_TYPE_PROXY_RESOLVER_GNOME);
1155 (Or alternatively, use SOUP_SESSION_ADD_FEATURE_BY_TYPE
1156 with soup_session_async_new_with_options() or
1157 soup_session_sync_new_with_options().)
1160 Other new features and bug fixes in 2.25.1 include:
1162 * SoupCookieJarText, like SoupCookieJarSqlite, but using the
1163 old-style cookies.txt format, and in the base libsoup rather
1166 * Various bugfixes to SoupCookie and SoupCookieJar to fix the
1167 problems with cookies not working on certain sites.
1169 * The new SoupMultipart type provides support for multipart
1170 MIME bodies, and soup-form now includes several methods for
1171 generating and parsing multipart form data and file uploads.
1173 * SoupMessageHeaders now has methods for easy handling of the
1174 Content-Type, Content-Disposition, Range, and Content-Range
1175 headers. The Content-Disposition handling recognizes
1176 RFC2231-encoded UTF-8 filenames.
1178 * SoupServer now automatically handles partial GET requests;
1179 if your server returns SOUP_STATUS_OK in response to a
1180 partial GET, libsoup will automatically convert it to a
1181 SOUP_STATUS_PARTIAL_CONTENT response with only the requested
1184 Thanks to Xan Lopez and Diego Escalante Urrelo for their work
1185 on SoupCookie, SoupCookieJar, SoupCookieJarText, and
1186 SoupCookieJarSqlite.
1188 Changes in libsoup from 2.24.0.1 to 2.24.1:
1190 * Fixed a crash when unreffing the session from a
1191 soup_session_queue_message() callback [#533473], and added
1192 regression test. In particular, this fixes a crash in
1193 seahorse when trying to connect to a non-responsive
1196 * Fixed an infinite loop when giving a bad password to a site
1197 that uses non-standard capitalization in the
1198 WWW-Authenticate header (eg, gmail.com) [#536285].
1200 * Fixed a leak in SoupSessionAsync when using a non-default
1201 GMainContext. [addendum to #498509, Arnout Vandecappelle]
1202 Added additional code to the regression tests to make sure
1203 sessions and servers do not get leaked.
1205 * Fixed a leak in the XML-RPC code
1207 * Compile fixes for "gcc -pedantic" [#553976, Sander Dijkhuis]
1208 and -DG_DISABLE_DEPRECATED / -DG_DISABLE_SINGLE_INCLUDES
1209 [#557072, Cosimo Cecchi]
1211 * Patched xmlrpc-test to accept the incorrect response to
1212 test_echo() that php-xmlrpc gives when it's built against
1213 libxml2 >= 2.7.1 (qv http://bugs.php.net/45996), so that
1214 I can "make distcheck"...
1216 * Updated generated documentation
1218 Changes in libsoup from 2.23.92 to 2.24.0.1:
1220 * Reverted part of the fix for #528882, which caused the DAAP
1221 plugin in rhythmbox to crash. [#553466]
1223 Changes in libsoup from 2.23.91 to 2.23.92:
1225 * Fixed the handling of a 302 response to a HEAD request,
1226 which should NOT be treated like a 303 response. [#551190,
1229 Changes in libsoup from 2.23.6 to 2.23.91:
1231 * Fixed a crash in gvfs [#528882], though there is still an
1232 unknown bug there. As part of this fix, libsoup will now
1233 return an error if you try to do an operation on a non-HTTP
1234 URI. (Previously it was just treating any URI scheme except
1237 * Added soup_date_to_timeval() for gvfs. [#549006, patch from
1240 Changes in libsoup from 2.23.1 to 2.23.6:
1242 * Fixed use of g_idle_add() so that heavy I/O won't end up
1243 blocking libsoup callbacks. [#536676, Benjamin Otte]
1245 * Allow the caller to override the Host header. [#539803, Marc
1248 * Properly handle responses larger than 4G. [#539861, Peter
1251 * Fixed the build when using certain LDFLAGS [#541506, Götz
1254 * Fixed a small bug in Digest auth handling. [#544681, Mads
1257 * Fixed multiple Windows bugs [Tor Lillqvist]
1259 Changes in libsoup from 2.4.1 to 2.23.1:
1261 * This is the first unstable release leading up to GNOME 2.24.
1262 Bumped the libsoup version number up to 2.23.x to match the
1263 GNOME version; note that the API version is still "2.4",
1264 meaning in particular that you still call it "libsoup-2.4"
1265 when using pkg-config.
1267 * Added SoupSessionFeature, an interface type that will be
1268 used for several new features. Ported SoupLogger and
1269 SoupAuthManager to use it.
1271 * Added SoupCookie and SoupCookieJar. This API is already
1272 being used in Epiphany, via WebKit, but it is not yet
1275 * Fixed GnuTLS support on Win32. [#528752, Marc Maurer]
1277 Changes in libsoup from 2.4.0 to 2.4.1:
1279 * Fixed SoupMessage to not downgrade to HTTP/1.0 for the
1280 second attempt when it receives an HTTP/1.0 redirect or 401.
1281 [#521848, Tommu Komulainen]
1283 * Fixed Host: header syntax when the host is an IPv6 address
1286 * Fixed SoupSession to not emit "authenticate" multiple times
1287 for messages that have been requeued. [#522601, Tommi
1288 Komulainen]. Also added two new signals to SoupSession,
1289 request-queued and request-unqueued, to help simplify
1290 certain session-helpers and avoid bugs like this in the
1293 * Fixed soup_server_pause_message() to actually work (rather
1294 than *un*pausing the message).
1296 * Added a property SOUP_SESSION_IDLE_TIMEOUT that can be used
1297 to set a timeout after which idle connections will
1298 automatically be closed. [#518214, Jorn Baayen]
1300 * Implemented RFC 2069-style Digest auth, and fixed SoupAuth
1301 to compare auth scheme names case-insensitively, to fix
1302 authentication against Apple's calendar server. [#498484]
1304 * Fixed a crash in SoupAuthDomainDigest if the client provided
1305 an unrecognized username. [pointed out by Curtis Magyar on
1308 * Fixed a few SoupDate bugs. (In particular, it was outputting
1309 the wrong day of the week when stringifying dates.)
1311 * Improved the cleanup of idle connections, to fix slow load
1312 times with the libsoup backend of WebKit.
1314 * Added a new SoupMessage signal "wrote-body-data" that can be
1315 used for progress information when sending a large request
1316 body. Also allow providing the request body in multiple
1317 chunks even when using Content-Length encoding. [#525101,
1320 * libsoup now ignores SIGPIPE globally, instead of
1321 un-thread-safe-ly ignoring it only around network writes. In
1322 particular, this means it is ignored when the SSL code needs
1323 to unexpectedly do a write when we asked it to do a read.
1324 [#524397, Curtis Magyar]
1326 * The discard-body-chunks-once-they're-no-longer-needed
1327 behavior, confusingly called SOUP_MESSAGE_OVERWRITE_CHUNKS,
1328 is now controlled by a SoupMessageBody method
1329 (soup_message_body_set_accumulate()), and can be applied to
1330 either the request body or the response body.
1331 (OVERWRITE_CHUNKS is still available for backward
1332 compatibility.) [#522146, Christian Kellner]
1334 * The DNS cache no longer caches "no such host" results, since
1335 some name servers lie to clients outside their firewall,
1336 which could then cause problems for laptops moved between
1337 networks. [#523269, Jörgen Scheibengruber]
1339 * Added some new regression tests, fixed some small bugs in
1342 Changes in libsoup from 2.3.4 to 2.4.0:
1344 * Fixed a small memory leak in SoupSession. [#518798, Wouter
1347 * Minor fixes to redirect behavior; PROPFINDs can now be
1348 automatically redirected (pointed out by Christian Kellner),
1349 and 302 is treated like 307, not 303. Also fixed to make
1350 sure that redirect-test actually gets run by "make check".
1352 * The SoupSocket I/O methods now set nread/nwrote even on
1353 error. [Benjamin Otte]
1355 Changes in libsoup from 2.3.2 to 2.3.4:
1357 * The documentation should be accessible from devhelp again
1358 [#518384, Mart Raudsepp]. (Also fixed another
1359 documentation-generation bug that affected builds from svn,
1360 but not the 2.3.2 tarball for some reason. [#518317,
1363 * Fixed dependencies in libsoup-2.4.pc file [#517631,
1366 Changes in libsoup from 2.3.0.1 to 2.3.2:
1368 API changes / Behavior changes:
1370 * soup_server_add_auth_domain() now refs the auth domain when
1371 adding it. (soup_server_remove_auth_domain() already
1372 unreffed it.) This means existing applications using
1373 SoupAuthDomain will now have a small memory leak. Those
1374 applications should update their libsoup-2.4 requirement to
1375 ">= 2.3.2" at some point before the final GNOME 2.22.0
1376 release, and then fix the code to unref the auth domain
1377 after adding it to the server.
1379 * SoupSession's automatic redirect-handling behavior now obeys
1380 RFC 2616 more closely. In particular, status codes 300 and
1381 304 are no longer mistakenly considered redirects; POSTs
1382 that receive 303 are now redirected into GETs; and POSTs
1383 that receive 301, 302, or 307 are now not redirected.
1385 Applications that were using the SOUP_MESSAGE_NO_REDIRECT
1386 flag to prevent libsoup from redirecting POSTs incorrectly
1387 before should now be able to remove that if they depend on
1388 libsoup-2.4 >= 2.3.2.
1392 * Added a SOUP_SESSION_USER_AGENT property to SoupSession, and
1393 SOUP_SERVER_SERVER_HEADER to SoupServer, to support
1394 automatically adding "User-Agent" and "Server" headers to
1395 messages. (The default behavior is to do nothing, as
1398 * Added several new methods to soup-forms.h. Applications that
1399 are encoding a fixed set of form fields can now just pass
1400 them to soup_form_encode(), rather than needing to construct
1401 a GHashTable or GData list. (Likewise, the new
1402 soup_uri_set_query_from_fields() behaves similarly for
1403 directly updating a URI with form data.) There are also now
1404 soup_form_request_new() and other related methods, to
1405 directly create a GET or POST SoupMessage for submitting a
1408 The original soup_form_* methods have all been renamed,
1409 although #defines exist for backward compatibility.
1411 * Added soup_message_set_chunk_allocator() and
1412 soup_buffer_new_with_owner(), to give applications more
1413 control over memory usage/copying when doing streaming HTTP.
1414 [Wouter Cloetens, #513810].
1416 * Added several new methods to soup-value-utils.h for working
1417 with multiple array or hash table values at once:
1418 soup_value_hash_new_with_vals(),
1419 soup_value_hash_insert_vals(),
1420 soup_value_hash_lookup_vals(),
1421 soup_value_array_new_with_vals(), and
1422 soup_value_array_append_vals().
1424 This helps to simplify XML-RPC calls that send or receive
1427 * Added soup_date_to_time_t().
1429 * Added SoupMessageHeadersIterator, an iterator type for
1430 SoupMessageHeaders that can be used instead of
1431 soup_message_headers_foreach().
1435 * Fixed a crash-when-idle in evolution-exchange [#437835] and
1436 rhythmbox [#506552].
1438 * Added the API version to the gtk-doc installation dir, to
1439 prevent parallel-installation problems with libsoup 2.2 and
1440 2.4. [#512810, Daniel Gryniewicz].
1442 * Fixed tests/query-test to compile correctly on Solaris.
1443 [#513602, patch from Jeff Cai]
1445 * Fixed some other minor HTTP conformance issues.
1449 * Although not present in the release tarball, there are now
1450 experimental python bindings for libsoup in GNOME subversion
1451 (in the python/ subdirectory of libsoup trunk). These are
1452 not yet stable (and are not built by default or installed
1453 even when building from svn), but comments on them are
1454 welcome at libsoup-list@gnome.org
1456 Changes in libsoup from the 2.2 series to 2.3.0.1:
1458 libsoup 2.3.0 is the first beta release of the libsoup 2.4
1459 series. It is an API break from the earlier 2.2 series that
1460 fixes various bugs and API warts and lays the groundwork for
1461 language bindings and various new features in upcoming
1464 (2.3.0.1 is identical to the 2.3.0 release in terms of code,
1465 but includes this updated NEWS file which was accidentally
1466 left out of the 2.3.0 tarball.)
1468 http://library.gnome.org/devel/libsoup/unstable/libsoup-porting-2.2-2.4.html
1469 goes over the API changes in detail. If you have questions not
1470 answered by the porting document, please send mail to
1471 libsoup-list@gnome.org.
1473 Specific user-reported bugs fixed in this release:
1475 * SoupURI now correctly handles URIs with complex encoded
1476 queries [#266516, Jean-Yves Lefort]
1478 * It is now possible for a SoupServer to use Digest auth
1479 without needing to have the cleartext password available.
1480 [#347108, Anas Nashif]
1482 * Digest authentication now properly handles "stale=true" and
1483 "nextnonce=..." [#471380, Jari Urpalainen]
1485 * SoupServer is now subclassible [#491653, Mathias Hasselmann]
1487 * soup_server_run_async and soup_server_quit no longer ref and
1488 unref the server, as that doesn't match ordinary GObject
1489 conventions [#494128, Mathias Hasselmann]
1491 * The test programs no longer use a symbol name that conflicts
1492 with Cygwin [#501631, Cygwin Ports Maintainer]
1494 * libsoup can now handle the not-quite-HTTP responses returned
1495 by Shoutcast servers [#502325, Wouter Cloetens]
1497 * If you use libsoup while disconnected from the network, it
1498 no longer caches the failed DNS results [#508593, Bradley
1501 Items from http://live.gnome.org/LibSoup/ToDo fixed:
1503 * "Expect: 100-continue" processing now works correctly on
1504 both client and server.
1506 * SoupSessions are no longer leaked
1508 * The XML-RPC API is improved. The SOAP API is gone...
1510 * Added utility functions for HTML form handling
1512 * Improved message header handling
1514 * SoupServer now automatically adds a "Date" header
1518 Changes in libsoup from 2.2.103 to 2.2.104:
1520 * soup_message_io_pause() and soup_message_io_pause() are now
1521 allowed for client messages (and in particular, they don't
1522 mess up when called from the "got_chunk" callback).
1523 [#452280, Marco Barisione]
1525 * Fixed some bugs in SOUP_SESSION_ASYNC_CONTEXT support that
1526 would cause parts of an operation to run in the default
1527 context rather than the session's context. Also fixed some
1528 leaks and added a regression test. [#498509, Wouter
1531 * There is a new test/sample program, tests/pull-api.c,
1532 showing how to implement a pull API using SoupSessionAsync.
1533 (This depends on the fixes for #452280 and #498509, so it
1534 won't work with older versions of libsoup.)
1536 * Discovered "valgrind --leak-resolution=med" and fixed some
1539 Changes in libsoup from 2.2.102 to 2.2.103:
1541 * Fix memory corruption in SoupSessionAsync that caused
1542 rhythmbox to crash. [#484988, patch from Rob Bradford]
1544 * Fix socket refcounting in SoupServer to fix warnings /
1545 possible crash. [#459896, Emanuele Aina]
1547 Changes in libsoup from 2.2.101 to 2.2.102:
1549 * Unbreak the build when building without SSL. Not that you
1550 should be building without SSL anyway, but... (reported by
1553 Changes in libsoup from 2.2.100 to 2.2.101:
1555 * Fix build on cygwin [384498]
1557 * Fix SSL rehandshaking on synchronous sockets [415402, Jacob
1558 Berkman] and add a regression test for it.
1560 * Fix two bugs in https tunnels over proxies that require
1561 authentication (noticed by Varadhan), and add a regression
1564 * Ensure that if you queue multiple messages at once to an
1565 http server that requires authentication but that you
1566 haven't authenticated to yet, that all of the messages get
1567 properly authenticated [271540, James Willcox]. And add a
1568 regression test for it.
1570 * Fix NTLM authentication, which got broken by the previous
1571 fix. [471389, Varadhan]. Add a basic NTLM regression test
1572 that doesn't really test the crypto/encoding parts, but at
1573 least makes sure that the message flow is correct.
1575 * Allow trailing whitespace after HTTP version in
1576 Response-Line, for compatibility with broken servers
1577 [475169, Stephane Loeuillet]. Add that case to the
1578 header-parsing regression test.
1580 * Fix crash when the session's "authenticate" handler returns
1581 a username and no password when using NTLM. [480987, Wendell
1584 * Use "new" glib base64 and iso8601 methods rather than
1585 duplicating them. [337010, patch from Emmanuele Bassi].
1587 * Implement soup_session_queue_message() for SoupSessionSync.
1589 * Add G_BEGIN_DECLS / G_END_DECLS to all headers that were
1590 missing them. [438776, patch from Jonathon Jongsma].
1592 * Fix broken definition of SOUP_IS_MESSAGE_FILTER_CLASS. Noted
1593 by "cascardo" on libsoup-list.
1595 * Remove documentation of non-public MD5 methods [440092,
1596 Jonathon Jongsma]. Removed a mysterious half-sentence in the
1597 SoupMessage docs [458116, Marco Barisione].
1599 Changes in libsoup from 2.2.99 to 2.2.100:
1601 * Fixed soup_headers_parse_status_line() so WebDAV response
1602 parsing will work again. [406997]
1604 * Fixed a bug in the header-parsing regression test that
1605 caused the test to fail sometimes, even though the actual
1606 header-parsing code was fine.
1608 Changes in libsoup from 2.2.98 to 2.2.99:
1610 * Fixed header parsing, including a crash in SoupServer with
1611 certain malformed requests [391970].
1613 * Fixed redirection to other hosts with SoupSessionAsync.
1616 * Fixed a small memory leak pointed out by Chris Austin.
1618 Changes in libsoup from 2.2.97 to 2.2.98:
1620 * The XML-RPC code now correctly interprets <value>foo</value>
1621 as meaning the same thing as
1622 <value><string>foo</string></value>. [364490] Pointed out by
1625 * Memory leak fixes from Andrew W. Nosenko.
1627 * A few symbols that should have been static before now are.
1628 [376387] Patch from Matthias Clasen.
1630 Changes in libsoup from 2.2.96 to 2.2.97:
1632 * Fixed SOAP and XML-RPC code to handle whitespace and
1633 comments in the XML better. (Based on a patch from Andrew W.
1636 * Fixed lots of typecasting/constness warnings in the code
1637 (mostly via a patch from Andrew W. Nosenko)
1639 * Fixed build on Cygwin [321827]
1641 * Fixed libsoup-2.2.pc fields [343340] and make it get
1642 uninstalled correctly [356809]. (Mikhail Zabaluev and
1645 * Fixed some small leaks in SoupServer pointed out by Paolo
1648 Changes in libsoup from 2.2.95.1 to 2.2.96:
1650 * SoupServer now works even if you don't explicitly set an
1651 encoding for the response. (In particular, the automatic 404
1652 if you request a path with no handlers now works. Problem
1653 pointed out by Dennis Jacobfeuerborn.)
1655 * WWW-Authenticate and Proxy-Authenticate responses with no
1656 realm parameter are now ignored, as per RFC 2617, fixing a
1657 crash pointed out by Nate Nielsen.
1659 * Added soup_xmlrpc_message_from_string(), from Fernando
1662 * simple-httpd and "get" now support HEAD
1664 Changes in libsoup from 2.2.94 to 2.2.95.1:
1666 * Even more fixes to XML-RPC, found by the new XML-RPC
1667 regression test. This includes some API changes that I don't
1668 feel guilty about, because the code totally didn't work at
1671 * Fixed a bug in soup_mktime_utc()
1673 * (2.2.95 was identical to 2.2.95.1. The only difference is
1674 that the shared library version was belatedly bumped from
1675 8.2.0 to 8.3.0 to reflect the API "additions")
1677 Changes in libsoup from 2.2.93 to 2.2.94:
1679 * Various fixes to the XML-RPC code (which apparently had not
1680 actually ever worked before) from Brent Smith. [343973,
1683 * Added client and server API tutorials to the docs
1685 * auth-test now uses a local Apache 2.2 install, if possible,
1686 rather than depending on files that used to be on an old
1687 Ximian web server but haven't been anywhere for a long time.
1690 Changes in libsoup from 2.2.92 to 2.2.93:
1692 * Fixed outgoing data corruption caused when SoupServer
1693 started writing out a response a second time after already
1694 having started once. [334469]. Also fixed 342640 and another
1695 bug caused by the workaround for 334469 in 2.2.92. Based on
1696 patches and analysis from William Jon McCann and Armin
1699 * Fixed a deadlock when changing a session's proxy URI.
1700 [309867 / bnc 174255, based on a patch by Veerapuram
1703 * Fixed https-via-proxies in the synchronous case. [bnc 174255]
1705 * Fixed a crash in evolution-exchange [342545, fix based on an
1706 analysis by Wang Xin].
1708 * Fixed simple-proxy to not crash at startup. Oops. (Alex
1711 Changes in libsoup from 2.2.91 to 2.2.92:
1713 * Fixed server-side digest auth to return a valid "algorithm"
1714 value and client-side to not crash if it sees an invalid one
1717 * Fixed the Request-Line parsing code to not hardcode a
1718 maximum URI length (to allow very long DAAP requests from
1719 iTunes in Rhythmbox). [335040]
1721 * Fixed some warnings (signed/unsigned mismatch).
1723 Changes in libsoup from 2.2.7 to 2.2.91:
1725 * (The large version number bump is because there was an
1726 internal 2.2.90 release for SUSE 10.1 alphas, which was
1727 supposed to be intermediate between 2.2.7 and 2.4.0. But
1728 2.4.0 didn't end up happening, and I don't want to regress
1729 the version number at this point.)
1731 * SoupSession, SoupServer, SoupConnection, SoupSocket, and
1732 SoupAddress now have an "async-context" property that allows
1733 you to use the async API in a non-default GMainContext.
1734 [Based on patches from Armin Bauer and Jürg Billeter.]
1736 * SoupSession, SoupConnection, and SoupSocket now have a
1737 "timeout" property to stop synchronous sockets from hanging
1738 forever if the remote end is unresponsive (from Varadhan).
1740 * Fixed some bugs in soup_date_iso8601_parse(). [324671, from
1743 * More Windows build fixes from Tor.
1745 Changes in libsoup from 2.2.6.1 to 2.2.7:
1747 * Fixed a crash when using NTLM connections [316313, probably
1748 also 318252]. (Also 321208, which was a bug introduced in
1749 the original fix for 316313.)
1751 * Fixed a bug that could cause soup to suck up all available
1752 CPU when a connection to a SoupServer was dropped by the
1753 other side [319305, patch from Jonathan Matthew]
1755 * Fixed the creation of struct elements in XMLRPC messages
1756 [321362, patch from Sebastian Bauer]
1758 * Plugged a small memory leak in SoupSocket (from Wang Xin).
1760 * Fixed two compile problems, a gccism [320349, patch from
1761 Roland Illig], and a strict-aliasing warning from gcc 4.1.
1763 Changes in libsoup from 2.2.6 to 2.2.6.1:
1765 * Fixed a crash when using SoupSoapMessage
1767 Changes from 2.2.5 to 2.2.6:
1769 * Fixed a crash when canceling a message (from Tambet Ingo)
1771 * Fixed a bug where a connection could be leaked forever in
1772 some circumstances if a request got a 30x, 401, or 407
1773 response, eventually causing a hang when the session hit its
1774 maximum connection limit. (Dan/Tambet)
1776 * Fixed a memory leak. (Tambet)
1778 * Fixed a bug that would sometimes show up when connecting to
1779 a server on localhost [#312540]
1781 * Added some API to SoupServer and SoupSocket to help fix a
1782 long-standing rcd bug.
1784 Changes from 2.2.4 to 2.2.5:
1786 * Win32 support (from Tor Lillqvist)
1788 * Up-to-date API documentation pretty much everywhere
1790 * Basic XMLRPC support (from Mariano Suarez-Alvarez, Fernando
1791 Herrera, and Jeff Bailey)
1793 * New HTTP timestamp-manipulation methods soup_date_parse,
1794 soup_date_generate, and soup_date_iso8601_parse.
1796 * SoupSession now handles relative URLs in the Location header
1797 (in violation of RFC 2616, but in line with how some servers
1800 Changes from 2.2.3 to 2.2.4:
1802 * Fixed a problem with NTLM authentication against
1803 multi-domain servers. [306877]
1805 * Fixed DNS lookups on Solaris. [254551, 268389]
1807 Changes from 2.2.2 to 2.2.3:
1809 * Now compiles against gnutls 1.2.0 [257811]
1811 * Fixed a bug that could result in 100% CPU usage if an SSL
1812 server closed the connection uncleanly. [273352]
1814 Changes from 2.2.1 to 2.2.2:
1816 * The SSL validation fix from 2.2.1 [264414] is now completely
1817 fixed. (Part of the fix didn't actually make it into 2.2.1)
1819 * HTTPS certificate validation now works when using an HTTP
1822 * HTTP proxy code deals better with proxies that try to make
1823 the user do HTML-form-based authentication. [268531]
1825 * 64-bit fixes for NTLM auth code. [270323, from Michael
1828 Changes from 2.2.0 to 2.2.1:
1830 * Updated for a libgcrypt API change between 1.1.9x and 1.2.x
1831 that caused a crash at runtime if you compiled against
1834 * SSL certificate validation failure should now always result
1835 in a status of SOUP_STATUS_SSL_FAILED, rather than getting
1836 turned into SOUP_STATUS_IO_ERROR. [264414]
1839 Changes in libsoup from the 2.0 series (1.99.x versions) to 2.2:
1841 * Most of the libsoup datatypes are now GObjects. (SoupUri
1842 is currently an exception to this.)
1844 * SoupMessage now emits signals at various stages of
1845 processing. (Eg, "wrote_body", "got_headers".) (You
1846 can also still use soup_message_add_*handler().)
1848 * SoupContexts are gone; soup_message_new() now takes a URI
1851 * All formerly global state is now maintained by the
1852 SoupSession object. (This includes the connection pool,
1853 proxy server, cached authentication information, SSL
1856 * You can create a SoupSessionAsync (for 2.0-like
1857 behavior) or SoupSessionSync (for blocking,
1860 * You can add SoupMessageFilter objects to a session
1861 to have certain processing automatically performed
1862 on every message sent via that session. (Eg, setting
1865 * NTLM authentication is no longer supported by
1866 default. You must enable it by setting the
1867 SOUP_SESSION_USE_NTLM flag on the session.
1869 * The preferred method of handling authentication is
1870 now via the "authenticate" and "reauthenticate"
1871 signals on SoupSession. (The old style, of encoding
1872 the user and password information into the url is
1873 also still supported.)
1875 * The SOUP_ERROR_* values are now SOUP_STATUS_* (so that we
1876 don't have "SOUP_ERROR_OK" and the like).
1878 * SOUP_MESSAGE_IS_ERROR() is gone, since some cases
1879 want to include 3xx responses and some don't.
1881 * SOUP_ERROR_CANT_AUTHENTICATE and
1882 SOUP_ERROR_CANT_AUTHENTICATE_PROXY are now gone,
1883 since they didn't carry any information that
1884 SOUP_STATUS_UNAUTHORIZED and
1885 SOUP_STATUS_PROXY_UNAUTHORIZED don't.
1887 * DNS errors now show up as the new status code
1888 SOUP_STATUS_CANT_RESOLVE rather than being mixed in
1889 with SOUP_ERROR_CANT_CONNECT.
1891 * Minimal SOAP support has been added back, via
1892 SoupSoapMessage/SoupSoapResponse
1894 * The HTTP I/O state machine was completely rewritten, fixing
1895 numerous crashes, leaks, and protocol errors.
1897 * SoupUri now conforms to RFC 2396. Mostly.
1899 * Various test programs have been added under tests/
1903 * Support for OpenSSL (which was horribly buggy) and
1904 Mozilla NSS (which was never finished). We only
1905 support GNUTLS for SSL now.
1909 * CGI support in SoupServer