--- JSON-XS/Changes 2016/11/16 18:08:30 1.174 +++ JSON-XS/Changes 2018/11/15 22:49:06 1.185 @@ -7,9 +7,41 @@ TODO: investigate magic (Eric Brine) TODO: rfc7464 TODO: Victor Efimov +TODO: move json_xs to types::serialiser? +TODO: [PATCH] Types::Serialiser: Inline true(), false() and error() functions + +TODO: document & testcase ->boolean_values (aristoteles). +4.0 + - SECURITY IMPLICATION: this release enables allow_nonref by default + for compatibnility with RFC 7159 and newer. See "old" vs. "new" + JSON under SECURITY CONSIDERATIONS. + - reworked the "old" vs. "new" JSON section. + - add ->boolean_values to provide the values to which booleans + decode (requested by Aristotle Pagaltzis). + - decode would wrongly accept ASCII NUL characters instead of + reporting them as trailing garbage. + - work around what smells like a perl bug w.r.t. exceptions + thrown in callbacks. + - incremental parser now more or less respects allow_nonref. + - json_xs json-pretty now enables canonical mode. + - add documentation section about I-JSON. + - minor documentation fixes/updates. + +3.04 Thu Aug 17 04:30:47 CEST 2017 + - change exponential realloc algorithm on encoding and string decoding to be + really exponential (this helps slow/debugging allocators such as libumem) + (reported by Matthew Horsfall). + - string encoding would needlessly overallocate output space + (testcase by Matthew Horsfall). + - be very paranoid about extending buffer lengths and croak if buffers get too large, + which might (or might not) improve security. + - add cbor-packed type to json_xs. + - switch from YAML to YAML::XS in json_xs, as YAML is way too buggy and outdated. + +3.03 Wed Nov 16 20:20:59 CET 2016 - fix a bug introduced by a perl bug workaround that would cause - incremental parsing with a sv_chop panic. + incremental parsing to fail with a sv_chop panic. - json_xs: toformat failure error message fixed. - json_xs: allow cyclic data structures in CBOR.