X-Git-Url: http://www.privoxy.org/gitweb/?a=blobdiff_plain;f=ChangeLog;h=eedf2a7e21cdff67ed38241a9e5f5040ba56ddfc;hb=320155e7eb1cdd404e8cd8c741d3cca045aa774e;hp=e63e0b823201796a4d236cd04596bee7e34109ed;hpb=c100c19882b5374a2733d34a1d99596cbe0eb355;p=privoxy.git diff --git a/ChangeLog b/ChangeLog index e63e0b82..eedf2a7e 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,7 +1,193 @@ -------------------------------------------------------------------- ChangeLog for Privoxy -------------------------------------------------------------------- -*** Version 3.0.20 Beta *** +*** Version 3.0.22 stable *** + +- Bug fixes: + - Actually show the FORCE_PREFIX value on the show-status page + - Properly deal with Keep-Alive headers with timeout= parameters + If the timeout still can't be parsed, use the configured + timeout instead of preventing the client from keeping the + connection alive. Fixes #3615312/#870 reported by Bernard Guillot. + - Not using any filter files no longer results in warning messages + unless an action file is referencing header taggers or filters. + Reported by Stefan Kurtz in #3614835. + - A couple of additional bugs were discovered by Coverity Scan. + The changes that are not expected to be user visible are not + explicitly mentioned here, for details please have a look at + the CVS logs. + +- General improvements: + -Introduced negative tag patterns NO-REQUEST-TAG and NO-RESPONSE-TAG + They apply if no matching tag is found after parsing client + or server headers. + - Add support for external filters which allow to process the + response body with a script or program written in any language + the platform supports. External filters are enabled with + +external-filter{} after they have been defined in one of the + filter files with a header line starting with "EXTERNAL-FILTER:". + External filter support is experimental, not compiled by default + and not expected to work on all platforms. + - Add support for the 'PATCH' method as defined in RFC5789 + - Reject requests with unsupported Expect header values + Fixes a couple of Co-Advisor tests. + - Normalize the HTTP-version in forwarded requests and responses. + This is an explicit RFC 2616 MUST and RFC 7230 mandates + that intermediaries send their own HTTP-version in forwarded + messages. + - Change declared template file encoding to UTF-8. + The files already used a subset of UTF-8 anyway and changing + the declaration allows to properly display UTF-8 characters + used in the action files. + This change may require existing action files with ISO-8859-1 + characters that aren't valid UTF-8 to be converted to UTF-8. + Requested by Sam Chen in #582. + - Do not pass rejected keep-alive timeouts to the server. It might + not have caused any problems (we know of), but doing the right + thing shouldn't hurt either. + - Let log_error() use its own buffer size #define + to make changing the log buffer size slightly less inconvenient. + - Turned single-threaded into a "proper" toggle directive with arguments. + - CGI templates no longer enforce new windows for some links. + - Remove an undocumented workaround (HOST header removal) for + an Apple iTunes bug that according to #729900 got fixed in 2003. + +- Action file improvements: + - The pattern 'promotions.' is no longer being blocked. + Reported by rakista in #3608540. + - Disable fast-redirects for .microsofttranslator.com/ + - Disable filter{banners-by-size} for .dgb-tagungszentren.de/ + - Add adn.speedtest.net as a site-specific unblocker. + Support request #3612908. + - Disable filter{banners-by-size} for creativecommons.org/ + - Block requests to data.gosquared.com/. Reported by cbug in #3613653. + - Unblock .conrad./newsletter/. Reported by David Bo in #3614238. + - Unblock .bundestag.de/. + - Unblock .rote-hilfe.de/. + - Disable fast-redirects for .facebook.com/plugins/like.php. + - Unblock Stackexchange popup URLs that aren't used to serve ads. + Reported by David Wagner in #3615179. + - Disable fast-redirects for creativecommons.org/. + - Unblock .stopwatchingus.info/. + - Block requests for .adcash.com/script/. + Reported by Tyrexionibus in #3615289. + - Disable HTML filters if the response was tagged as JavaScript. + Filtering JavaScript code with filters intended to deal with HTML + is usually a waste of time and, more importantly, may break stuff. + - Use a custom redirect{} for .washingtonpost.com/wp-apps/imrs\.php\?src= + Previously enabling the 'Advanced' settings (or manually enabling + +fast-redirects{}) prevented some images from being loaded properly. + - Unblock "adina*." Fixes #919 reported by Morton A. Goldberg. + - Block '/.*DigiAd' + - Unblock 'adele*.'. Reported by Adele Lime in #1663. + +- Filter file improvements & bug fixes: + - Decrease the chances that js-annoyances creates invalid JavaScript. + Submitted by John McGowan on ijbswa-users@. + - Let the msn filter hide 'related' ads again + - Remove a stray '1' in the 'html-annoyances' filter + - Prevent img-reorder from messing up img tags with empty src attributes + Fixes #880 reported by Duncan. + +- Documentation improvements: + - Updated the 'Would you like to donate?' section. + - Note that invalid forward-override{} parameter syntax isn't + detected until the parameter is used. + - Add another +redirect{} example: a shortcut for illumos bugs. + - Make it more obvious that many operating systems support log + rotation out of the box + - Fixed dead links. Reported by Mark Nelson in #3614557. + - Rephrased the 'Why is the configuration so complicated?' answer + to be slightly less condescending. Anonymously suggested in #3615122. + - Be more explicit about accept-intercepted-requests's lack of MITM support + - Make 'demoronizer' FAQ entries more generic + - Add an example hostname to the --pre-chroot-nslookup description + - Add an example for a host pattern that matches an IP address + - Rename the 'domain pattern' to 'host pattern' as it may contain IP addresses as well + - Recommend forward-socks5t when using Tor + It seems to work fine and modifying the Tor configuration + to profit from it hasn't been necessary for a while now. + - Add another redirect{} example to stress that redirect loops can and should be avoided + - The usual spelling and grammar fixes. Parts of them were + reported by Reuben Thomas in #3615276. + - Mention the PCRS option letters T and D in the filter section + - Clarify that handle-as-empty-doc-returns-ok is still useful + and will not be removed without replacement + - Note that security issues shouldn't be reported using the bug tracker + - Clarify what Privoxy does if both +block{} and +redirect{} apply + - Removed the obsolete bookmarklets section. + +- Build system improvements + - Let --with-group properly deal with secondary groups + Patch submitted by Anatoly Arzhnikov in #3615187. + - Fix web-actions target + - Add a web-faq target that only updates the FAQ on the webserver + - Remove already-commented-out non-portable DOSFILTER alternatives + - Remove the obsolete targets dok-put and dok-get + - Add a sf-shell target + +*** Version 3.0.21 stable *** + +- Bug fixes: + - On POSIX-like platforms, network sockets with file descriptor + values above FD_SETSIZE are properly rejected. Previously they + could cause memory corruption in configurations that allowed + the limit to be reached. + - Proxy authentication headers are removed unless the new directive + enable-proxy-authentication-forwarding is used. Forwarding the + headers potentially allows malicious sites to trick the user + into providing them with login information. + Reported by Chris John Riley. + - Compiles on OS/2 again now that unistd.h is only included + on platforms that have it. + +- General improvements: + - The show-status page shows the FEATURE_STRPTIME_SANITY_CHECKS status. + - A couple of assert()s that could theoretically dereference + NULL pointers in debug builds have been relocated. + - Added an LSB info block to the generic start script. + Based on a patch from Natxo Asenjo. + - The max-client-connections default has been changed to 128 + which should be more than enough for most setups. + +- Action file improvements: + - Block rover.ebay./ar.*\&adtype= instead of "/.*\&adtype=" which + caused too man false positives. + Reported by u302320 in #360284, additional feedback from Adam Piggott. + - Unblock '.advrider.com/' and '/.*ADVrider'. + Anonymously reported in #3603636. + - Stop blocking '/js/slider\.js'. + Reported by Adam Piggott in #3606635 and _lvm in #2791160. + +- Filter file improvements: + - Added an iframes filter. + +- Documentation improvements: + - The whole GPLv2 text is included in the user manual now, + so Privoxy can serve it itself and the user can read it + without having to wade through GPLv3 ads first. + - Properly numbered and underlined a couple of section titles + in the config that where previously overlooked due to a flaw + in the conversion script. Reported by Ralf Jungblut. + - Improved the support instruction to hopefully make it harder to + unintentionally provide insufficient information when requesting + support. Previously it wasn't obvious that the information we need + in bug reports is usually also required in support requests. + - Removed documentation about packages that haven't been provided + in years. + +- Privoxy-Regression-Test: + - Only log the test number when not running in verbose mode + The position of the test is rarely relevant and it previously + wasn't exactly obvious which one of the numbers was useful to + repeat the test with --test-number. + +- GNUmakefile improvements: + - Factor generate-config-file out of config-file to make testing + more convenient. + - The clean target now also takes care of patch leftovers. + +*** Version 3.0.20 beta *** - Bug fixes: - Client sockets are now properly shutdown and drained before being @@ -60,7 +246,7 @@ ChangeLog for Privoxy intentions. When looking at the response headers alone, it previously wasn't obvious from the client's perspective that no additional responses should be expected. - - Stop considering client sockets tainted after receving a request with body. + - Stop considering client sockets tainted after receiving a request with body. It hasn't been necessary for a while now and unnecessarily causes test failures when using curl's test suite. - Allow HTTP/1.0 clients to signal interest in keep-alive through the @@ -77,10 +263,9 @@ ChangeLog for Privoxy platforms. Initial patch submitted by Simon South in #3564815. - Optionally try to sanity-check strptime() results before trusting them. Broken strptime() implementations have caused problems in the past and - the most recent offender seems to be FreeBSD's libc: - http://www.freebsd.org/cgi/query-pr.cgi?pr=173421 + the most recent offender seems to be FreeBSD's libc (standards/173421). - When filtering is enabled, let Range headers pass if the range starts at - the beginning. This should work around (or at least reduce ) the video + the beginning. This should work around (or at least reduce) the video playback issues with various Apple clients as reported by Duc in #3426305. - Do not confuse a client hanging up with a connection time out. If a client closes its side of the connection without sending a request line, do not @@ -116,7 +301,7 @@ ChangeLog for Privoxy - Block '/openx/www/delivery/'. - Disable fast-redirects for '.googleapis.com/'. - Block 'imp.double.net/'. Reported by David Bo in #3070411. - - Block 'gm-link.com/' whis is used for email tracking. + - Block 'gm-link.com/' which is used for email tracking. Reported by David Bo in #1812733. - Verify that requests to "bwp." are blocked. URL taken from #1736879 submitted by Francois Marier. @@ -223,7 +408,7 @@ ChangeLog for Privoxy - Various data type corrections. - Change visibility of several code segments when compiling without FEATURE_CONNECTION_KEEP_ALIVE enabled for clarity. - - In pcrs_get_delimiter(), do not use delimiters ouside the ASCII range. + - In pcrs_get_delimiter(), do not use delimiters outside the ASCII range. Fixes a clang complaint. - Fix an error message in get_last_url() nobody is supposed to see. Reported by Matthew Fischer in #3507301. @@ -239,7 +424,7 @@ ChangeLog for Privoxy - Let enlist_unique_header() verify that the caller didn't pass a header containing either \r or \n. - Change the hashes used in load_config() to unsigned int. That's what - hash_string() actually returns and using a potentiallly larger type + hash_string() actually returns and using a potentially larger type is at best useless. - Use privoxy_tolower() instead of vanilla tolower() with manual casting of the argument. @@ -265,8 +450,8 @@ ChangeLog for Privoxy - Improve the --statistics performance by skipping sanity checks for input that shouldn't affect the results anyway. Add a --strict-checks option that enables some of the checks again, just in case anybody cares. - - The distribution of client requests per connection is included in the - --statistic output. + - The distribution of client requests per connection is included in + the --statistic output. - The --accept-unknown-messages option has been removed and the behavior is now the default. - Accept and (mostly) highlight new log messages introduced with @@ -295,17 +480,16 @@ ChangeLog for Privoxy - configure improvements: - On Haiku, do not pass -lpthread to the compiler. Haiku's pthreads implementation is contained in its system library, libroot, so no - additional library needs to be searched. Patch submitted by Simon South in - #3564815. + additional library needs to be searched. + Patch submitted by Simon South in #3564815. - Additional Haiku-specific improvements. Disable checks intended for multi-user systems as Haiku is presently single-user. Group Haiku-specific settings in their own section, following the pattern for Solaris, OS/2 and AmigaOS. Add additional library-related settings to remove the need for - providing configure with custom LDFLAGS. Submitted by Simon South in - #3574538. - - Several improvements for clarity, diffability and logic. + providing configure with custom LDFLAGS. + Submitted by Simon South in #3574538. - *** Version 3.0.19 Stable *** +*** Version 3.0.19 Stable *** - Bug fixes: - Prevent a segmentation fault when de-chunking buffered content. @@ -889,7 +1073,7 @@ ChangeLog for Privoxy - The scripts in the tools directory treat unknown parameters as fatal errors. -*** Version 3.0.15 Beta *** +*** Version 3.0.15 beta *** - In case of missing server data, no error message is send to the client if the request arrived on a reused connection. The client @@ -935,7 +1119,7 @@ ChangeLog for Privoxy - Privoxy-Regression-Test supports redirect tests. - Privoxy-Log-Parser can gather some connection statistics. -*** Version 3.0.14 Beta *** +*** Version 3.0.14 beta *** - The latency is taken into account when evaluating whether or not to reuse a connection. This should significantly reduce the number of @@ -970,7 +1154,7 @@ ChangeLog for Privoxy - The configure script respects the $PATH variable when searching for groups and id. -*** Version 3.0.13 Beta *** +*** Version 3.0.13 beta *** - Added IPv6 support. Thanks to Petr Pisar who not only provided the initial patch but also helped a lot with the integration. @@ -1114,7 +1298,7 @@ ChangeLog for Privoxy http://www.fabiankeil.de/sourcecode/privoxy-log-parser/ Documentation is available through perldoc(1). -*** Version 3.0.9 Beta *** +*** Version 3.0.9 beta *** - Added SOCKS5 support (with address resolution done by the SOCKS5 server). Patch provided by Eric M. Hopper. @@ -1228,7 +1412,7 @@ ChangeLog for Privoxy config.txt referenced a nonexisting file - Minor documentation fixes. -*** Version 3.0.7 Beta *** +*** Version 3.0.7 beta *** - Added zlib support to filter content with gzip and deflate encoding. (Patch provided by Wil Mahan) @@ -1384,7 +1568,7 @@ ChangeLog for Privoxy - Changed webinterface default values for hide-user-agent, hide-referrer and set-image-blocker. -*** Version 3.0.5 Beta *** +*** Version 3.0.5 beta *** - Windows version can be installed/started as a service. - Windows icon stays blue when Privoxy is idle, green when busy. @@ -1514,7 +1698,7 @@ ChangeLog for Privoxy user.action. user.action is for personal/local configuration. - The usual many small and miscellaneous bug and security fixes. -*** Version 2.9.14 Beta *** +*** Version 2.9.14 beta *** - Fix Solaris compile problem (gateway.h and filters.h) - Makefile fixes for Solaris, FreeBSD (?) @@ -1528,7 +1712,7 @@ ChangeLog for Privoxy - #include mechansim for common text in templates - Various other minor fixes. -*** Version 2.9.13 Beta *** +*** Version 2.9.13 beta *** - *NEWS*: The project has been renamed to Privoxy! The new name is reflected throughout (file locations, etc). @@ -1540,7 +1724,7 @@ ChangeLog for Privoxy - RPM spec file make over. -*** Version 2.9.12 Beta *** +*** Version 2.9.12 beta *** - **READ**: The default listening PORT is NOW 8118!!! Changed from 8000 due to conflict with NAS (Network Audio Server, whatever that @@ -1577,7 +1761,7 @@ ChangeLog for Privoxy - Various other minor fixes. -*** Version 2.9.11 Beta Changes *** +*** Version 2.9.11 beta Changes *** - Add "session" cookie concept where cookies exist for the life of that browser session only (ie never goes to disk). @@ -1700,7 +1884,7 @@ being a mix of "U.S. English", "U.K. English" and "Irish English". ---------------------------------------------------------------------- -Copyright : Written by and Copyright (C) 2001-2010 the +Copyright : Written by and Copyright (C) 2001-2013 the Privoxy team. http://www.privoxy.org/ Based on the Internet Junkbuster originally written