sanitize is not always required so we cannot make it. let's just whitelist protocols
Fix build for branch 3-0-stable - Ruby 1.9.3
Due to the hash ordering changes on Ruby 1.8.7-p358.
Fix typo in redirect test
Strip null bytes from Location header Conflicts: actionpack/test/controller/redirect_test.rb
* 3-0-stable-security: Ensure  respects the status of the buffer. use AS::SafeBuffer#clone_empty for flushing the output_buffer add AS::SafeBuffer#clone_empty fix output safety issue with select options
…ixes #3685. Conflicts: actionpack/CHANGELOG.md Conflicts: actionpack/CHANGELOG.md
The bug is that an error would be raised while attempting to convert a template from one encoding to another. Please see http://redmine.ruby-lang.org/issues/5564 for more details. The workaround is to load all conversions into memory ahead of time, and will only happen if the ruby version is *exactly* 1.9.3p0. The hope is obviously that the underlying problem will be resolved in the next patchlevel release of 1.9.3. Conflicts: actionpack/CHANGELOG.md
…rgumentError: wrong number of arguments (1 for 0) to be thrown at actionpack-3.0.10/lib/action_controller/railtie.rb:54.
…oller::TestCase#process since ActionDispatch::Http::Parameters#encode_params will force encoding on all params strings (when using an encoding aware Ruby), dup all strings passed into process. This prevents modification of params passed in and, more importantly, doesn't barf when a frozen string is passed thanks and high fives to kinsteronline
… (such as :host) would be returned in the hash... calling #dup on the hash prevents this
…nverting the Mail::Body to a string to prevent errors.