Shared directories can now be created independently by the pacakges
needing them and will be removed automatically by pkg_delete when empty.
Packages needing empty directories can use the @pkgdir command in PLIST.
Discussed and ok'd in thread starting at
http://mail-index.netbsd.org/tech-pkg/2009/06/30/msg003546.html
Trac 0.11.5 (July 17, 2009)
http://svn.edgewall.org/repos/trac/tags/trac-0.11.5
Trac 0.11.5 is identical to 0.11.5rc2 except for fixing a minor
incompatibility issue when using IIS via AJP as frontend (#8475).
Trac 0.11.5rc2 (July 11, 2009)
http://svn.edgewall.org/repos/trac/tags/trac-0.11.5rc2
Trac 0.11.5rc2 fixes two regressions found in rc1 and one minor enhancement:
* Fixed workaround for zipped Genshi eggs, [8354], #7823
* Fixed internal error when removing a wiki page version [8343].
* Fixed display of merge properties for scoped repositories #7715.
Trac 0.11.5rc1 (March 30, 2009)
http://svn.edgewall.org/repos/trac/tags/trac-0.11.5rc1
Trac 0.11.5rc1 contains a number of bug fixes and minor enhancements.
The following list contains only a few highlights:
Bug fixes:
* Implemented pre-upgrade backup support for PostgreSQL and MySQL (#2304)
* Fixed PostgreSQL upgrade issue (#8378)
* More robust diff parsing (#2672)
* Avoid intermittent hangs by not calling apr_terminate explicitly (#7785)
Changes since version 3.1.0.9:
- Bug 2087: Support adaptation sets and chains
- Bug 2459: dns error message broken when error handling delayed
- Support ICAP Retry
- Support ICAP retries based on the ICAP responses status code
- Support logging ICAP
- Support logging total DNS wait time
- Support logging response times of adaptation transactions
- General logging enhancements
- Dynamically form chains based on ICAP X-Next-Services header
- Support cross-transactional ICAP header exchange
- Bug 2680: Regression Crash after rotate with no helpers running
- Bug 2695: Regression in WCCPv2 L2 mask assignment
- Bug 2707: Regression in FTP anonymous auth
- Bug 422, 2706: RFC 2616 Date header requirements
- Bug 1087: ESI processor not quoting attributes correctly.
- Bug 1338: File prefetches aborted despite range_offset
- Bug 2080: wbinfo_group.pl - false positive under certain conditions
- Bug 2092: select loop 32-bit call counter overflows
- Bug 2127: delay pools class 4 crashes with ntlm auth
- Bug 2611: document fast/slow acl types
- Bug 2614: Potential loss of adapted body data from eCAP adapters
- Bug 2658: Missing TextException copy constructor
- Bug 2659: String length overflows on append, leading to segfaults
- Bug 2699: Build failure NTLM smb_lm helper
- Bug 2709: TRANSLATIONS not installed
- Bug 2710: squid_kerb_auth non-terminated string
- Delay pools 64-bit buckets and IPv6-polish
- Break forwarding loops for "transparent" or "intercept" http_ports.
- Add --disable-translation option to detatch .po from error negotiation
- Add squidclient man(1) page
- Add localhost to default permitted networks
- http_port allow-direct option to allow direct forwarding in accelerator mode
- ... and many testing infrastructure updates
- ... and much adaptation polish and improvements
- Updating package for p5 module App::Nopaste from 0.10 to 0.15
- Adding perl license
- Reordering dependencies between required and recommended
- Adjusting dependency versions
Upstream changes:
0.15 Wed Jul 15 05:01:36 2009
MANIFEST is really hard! :(
0.14 Wed Jul 15 04:48:15 2009
No code changes
0.13 Wed Jul 15 04:47:21 2009
Add support for paste.debian.net (Ryan Niebur)
0.12 Mon Jul 13 19:35:10 2009
Don't explicitly (optionally) depend on Git, but use it if
we have it (Sartak)
0.11 Thu Jun 18 17:20:51 2009
Service::Gist: use file_ext instead of file_name (nothingmuch)
Bump Moose dependencies to avoid deprecation warnings
Doc typo fix (rafl)
- Updating package for p5 module WWW:Curl from 4.07 to 4.09
- Adding license comment for or license experts
- Replacing duplicated dependency to www/curl with an API dependency
version
- Using Module::Install as module type
Upstream changes:
4.09 Thu Jul 09 2009: - Balint Szilakszi <szbalint at cpan.org>
- Fixing broken version check.
4.08 Tue Jul 07 2009: - Balint Szilakszi <szbalint at cpan.org>
- Fixed a memory leak in setopt.
- Added a check to Makefile.PL for the minimum libcurl version.
- Mentioned WWW::Curl hosting on github.
- Upgraded bundled Module::Install to 0.91.
- Updating package for p5 module WWW::Mechanize from 1.54 to 1.58
- Adjusting license and dependencies according to META.yml and Makefile.PL
Upstream changes:
1.58 Mon Jul 13 22:32:23 CDT 2009
========================================
No new features. If you have 1.56 installed OK, you do NOT need
to install 1.58.
[FIXES]
Removed prereq of HTTP::Response::Encoding, even though it was never
used. Thanks for the catch, Gisle.
1.56 Thu Jul 9 00:36:54 CDT 2009
========================================
[THINGS THAT MAY BREAK YOUR CODE]
For a while, Mech used HTTP::Response::Encoding to try to suss out
the proper encoding of the page it receives. Now, it lets
LWP::UserAgent do the work, and no longer requires
HTTP::Response::Encoding.
[ENHANCEMENTS]
Added a new dump_headers() method to dump the HTTP response headers.
Added --headers flag to mech-dump to dump the HTTP response headers.
[FIXES]
Now requires LWP version 5.829 because HTTP::Response has memory
cycle bugs.
[DOCUMENTATION]
Added a few notes to the FAQ, and fixed some incorrect docs.
1.55_01 Mon Jul 6 12:17:10 CDT 2009
========================================
This is mostly a bug fix release. There will be a number of other
bug fix releases in the next few days.
[FIXED]
New test server now randomizes the port it runs on.
t/cookies.t should not hang on Windows any more.
META.yml has been updated so the search.cpan.org links should be
correct.
Passing no_proxy would make LWP::UserAgent barf. Thanks to Mike
Schilli for the fix.
Cookies test would fail under Windows. Fixed, thanks to many people
reporting it.
[ENHANCEMENTS]
$mech->submit_form() now can specify the form by ID using the form_id
parameter.
[DOCUMENTATION]
The docs used to say that ->stack_depth(0) was an infinite stack
size. This is wrong. Zero will tell Mech not to keep any history.
Changelog:
Changes between 0.1 to 0.3:
0.3
Added the possibility to specify the path where SWILL creates temporary files. Added swill_interface() to bind to specific interface.
0.2
Added support for compiling under Win32 with MSVC.
Added support for HTTPS using OpenSSL.
* SA-CORE-2009-007 - Drupal core - Multiple vulnerabilities
In addition to this security vulnerability, the following bugs have been fixed since the 6.12 release:
* - Patch #463450 by wulff: fixed documentation glitch.
* #193577 by Rob Loach, Damien Tournoud, andypost: JavaScript string split() function does not behave like PHP explode(); causes problems with multiple node body break tags
* #454992 by sun, bengtan: _drupal_flush_css_js() should not have 'q' as a possible CSS query character, since that is the Drupal path name character too
* #452704 by andypost, catch: Names of compressed CSS and JS files should have a prefix, so that names starting in ad* will not happen. Those are easily blocked by firewalls, Firefox's Adblock, etc.
* #468732 by andypost: cache_clear_all() mentioned cache_flush_delay incorrectly; it should say we use cache_lifetime
* #460420 by wulff, andypost: drupal_set_title() in forum_overview() is not needed; menu already sets the title and is localized
* #398902 by Nick Urban, alexanderpas, kscheirer: password equality checking was not using strict type checking; we should assume these are strings and compared character to character
* #479216 by jhedstrom: fix grammar in forum module messages
* #445748 by Dave Reid, dww: Fix module support for disabled module update status checking and do not track usage in that case.
* #465190 by Heine: The Anonymous name is a plain text setting, so it should be escaped properly for output.
* #246096 by Sutharsan, Pedro Lozano, mr.baileys, andypost: Actions set to run on cron were not actually triggered.
* #226479 by gpk, BrianV, catch: We should always show the node access rebuild button. The check on when to show it was fragile, so the button might not have been there when actually needed.
* #482646 by Dave Reid: For proper HTTP query simpletesting, we should pass on the instance identifier (database prefix).
* #197266 by ufku, lilou, Dave Reid, c960657, drewish: Save a query by only calling file_space_used() when a limit is provided.
* #408876 by Pasqualle, JamesAn: The 'serialize' Schema API property was used but not documented.
* #145733 by kepten, brianV: The session.use_cookies PHP setting is required by Drupal, but it can be turned off, so try to ensure it is turned on at all times.
* #373225 by jpulles, Josh Waihi: When changing columns, PostgreSQL needs explicit type casting to ensure that values are kept properly.
* #236657 by hctom, swentel: In system_clear_cache_submit(), the function arguments were swapped (but it did not affect how it actually worked).
* #243253 by Benjamin Melançon, dww: Update status should not attempt to request update data until a limit is reached. Fixed Drupal instances when drupal.org is down and gets less load on Drupal.org if data is not found.
* #339466 by patryk, c960657, alexanderpas: Remove url() wrapping from remote links and link in a more user friendly OpenID provider list.
* #461938 by grendzy, JamesAn: Use filter_xss_admin() on site name and site slogan, just like footer message and mission
* #455172 by budda, RoboPhred, andypost: Fix drupal_mail() documentation, so that it encourages to set the body of the email as an array (like core does).
* #329797 by berenddeboer, redndahead, danielb: The tablesort code did not account for possibly nested tables; only match immediate descendats, so elements of nested tables are not matched.
* #352121 by valthebald, Damien Tournoud, mr.baileys: The safe string check on translations should only be applied to the default textgroup. Strings in other textgroups such as blocks and menu items are displayed via escaping and filtering, and might contain arbitrary HTML.
* SA-CORE-2009-007 Drupal core - Multiple vulnerabilities
In addition to this security vulnerability, the following bugs have been fixed since the 5.18 release:
* #212285 by wrwrwr: hr should be treated as a block level tag. Backport by alexanderpas.
* #145733 by kepten, brianV: The session.use_cookies PHP setting is required by Drupal, but it can be turned off, so try to ensure it is turned on at all times.
- Updating package for p5 module LWP from 5.828 to 5.829
- Adjusting license to perl license
Upstream changes:
2009-07-07 Release 5.829
This release removes callback handlers that were left over on the returned
HTTP::Responses. This was problematic because it created reference loops
preventing the Perl garbage collector from releasing their memory. Another
problem was that Storable by default would not serialize these objects any
more.
This release also adds support for locating HTML::Form inputs by id or class
attribute; for instance $form->value("#foo", 42) will set the value on the
input with the ID of "foo".
Gisle Aas (5):
Make the example code 'use strict' clean by adding a my
Avoid cycle in response
Clean up handlers has from response after data processing is done
Support finding inputs by id or class in HTML::Form
Test HTML::Form selectors
Mark Stosberg (1):
Tidy and document the internals of mirror() better [RT#23450]
phrstbrn (1):
Avoid warnings from HTML::Form [RT#42654]
* img: Fix extra double quote with alt text. (smcv)
* Updated French debconf templates translation. Closes: #535103
* openid: Support Net::OpenID 2.x when pretty-printing openids. (smcv)
* highlight: Fix utf-8 encoding bug. Closes: #535028
* comment: Make comment directives no longer use the internal
"\_comment" form, and document the comment directive syntax.
* Avoid relying on translators preserving the case when translating
"discussion", which caused Discussion pages to get unwanted
Discussion links.
* Tighten up matching of bare words inside directives; do not allow
an unterminated triple string to be treated as a series of bare
words. Fixes runaway regexp recursion/backtracking in strange
situations.
* Setup automator: Check that each plugin added to the generated
setup file can be loaded and that its config is ok. If a plugin
fails for any reason, disable it in the generated file. Closes:
#532001
* pagecount: Fix broken optimisation for * pagespec.
* goto: Support being passed a page title that is not a valid page
name, to support several cases including mercurial's long user
names on the RecentChanges page, and urls with spaces being
handled by the 404 plugin.
* Optimise use of gettext, and avoid ugly warnings if Locale::gettext
is not available. Closes: #532285
* meta: Add openid delegate parameter to allow delegating only
openid or openid2.
* Disable the Preferences link if no plugin with an auth hook is enabled.
* Updated French translation. Closes: #532654
* aggregate: Fix storing of changed md5.
* aggregate: Avoid resetting ctime when an item md5 changes.
* highlight: New plugin supporting syntax highlighting of pretty
much anything.
* debian/control: Add suggests for libhighlight-perl, although that
package is not yet created by Debian's highlight source package.
(See #529869)
* format: Provide a htmlizefallback hook that other plugins can use
to handle formats that are not suitable for general-purpose
htmlize hooks. Used by highlight.
* Fix test suite to not rely on an installed copy of ikiwiki after
underlaydir change. Closes: #530502
* Danish translation update. Closes: #530877
Changes:
2.1.1:
Add additional size checks for images.
Added support for css colors of the form rgb(255, 255, 255).
Added the 'nop' keybinding (nop = NO_OPERATION; cancels a default hook).
Added 'stop' key action (not bound by default).
Reduced 'warning: ignoring return value of ...'
2.1:
Implemented basic CSS infrastructure!
Read user style from ~/.dillo/style.css.
Added configurable keybindings! (in ~/.dillo/keysrc)
Implemented "search previous" in string searches.
Ported the command line interface from dillo1
Set middle click to submit in a new TAB. (Helps to keep form data!)
Implemented Basic authentication!
Implemented a close-tab button for the GUI.
Implemented a tools menu.
Added dillo(1) man page.
Added "font_max_size", "font_min_size" dillorc options.
Added instant client-side redirects (aka. zero-delay META refresh).
Proxy support for HTTPS.
Updated the URL resolver to comply with RFC-3986.
Fixed Bookmarks modify's HTML so it wraps nicely on handhelds.
Made cookierc parsing more robust.
Fix: recover page focus when clicking outside of a widget.
Added support for the Q element. BUG#343
Added a right-click menu to form controls (show hiddens, submit, reset)
Added the "http_language" dillorc option for setting HTTP's Accept-Language.
Replace image loading button and page menu option with a tools menu option.
Implemented the "overline" text-decoration.
Enhanced and cleaned up text decorations for SUB and SUP.
Added "View Stylesheets" to the page menu.
System config files have moved to sysconfdir/dillo/
Allowed compilation with older machines by removing a few C99isms.
Switched SSL-enabled to configure.in (./configure --enable-ssl).
Removed redundant caller NULL checks already in the API.
Added use of inttypes.h when stdint.h isn't found.
Made the parser recognize "[^ ]/>"-terminated XML elements.
Brought in Sebastian's CSS parser from dillo-0.8.0-css-3.
Support CSS @import directive.
Improved CSS selector matching performance using hash tables.
Added support for descendant and child selectors.
Support selector specificity.
Replace bg_color dillorc option.
Remove text_color, link_color, and force_my_colors dillorc options.
Replace visited_color dillorc option.
Allow negative values for specific CSS properties only.
Disable negative margins for now as dw/* does not support them yet.
Disable form widgets while stylesheets are loading.
Implement --xid command line option (used by claws mail client).
Added the "middle_click_drags_page" dillorc option.
Set the File menu label to hide when the File menu-button is shown.
Made a big cleanup of cache.c WRT charset decoding (fixes bugs).
Made an extensive cleanup/fixup of the whole image handling process.
Fixed handling of META's content-type with no MIME type (e.g. only charset).
Added support for a quoted URL in META refresh.
Updated the GPL copyright note in the source files.
from 0.09 to 0.10
Adjusting dependencies
Upstream changes:
0.10 Tue Jul 7 13:00:27 CEST 2009
- Depend on a recent Store::Delegate for the NEXT -> MRO::Compat
switch.
Upstream changes:
1.19 2009-06-29 00:36:50
- Update Module::Install to a version that doesn't screw up
auto_install anymore (Closes: RT#45784).
- Generate Makefile.PLs with unix-paths, even on windows (Closes:
RT#46059).
to 0.24
Upstream changes:
0.24 Mon Jun 29 2009
- Add an __ENV(foo)__ macro + tests (Stuart Watt)
- Document CATALYST_CONFIG_LOCAL_SUFFIX and MYAPP_LOCAL_CONFIG_SUFFIX
much better (Louis Erickson)
- Fix so that having CATALYST_CONFIG_LOCAL_SUFFIX set in $ENV{} doesn't
cause the tests to break.
Adjusting dependencies
Upstream changes:
5.80007 2009-06-30 23:54:34
Bug fixes:
- Don't mangle query parameters passed to uri_for
- Tests for this (Byron Young + Amir Sadoughi)
- Inherited controller methods can now be specified in
config->{action(s)}
- Assigning an undef response body no longer produces warnings
- Fix C3 incompatibility bug caused if you use Moose in MyApp.pm and
add Catalyst to the right hand side of this in @ISA.
- Make Catalyst.pm implement the Component::ApplicationAttribute
interface so defining actions in MyApp.pm works again, if the
actions have attributes that cause $self->_application to be used
(like ActionClass).
New features:
- Add optional second argument to uri_with which appends to existing
params rather than replacing them. (foo=1 becomes foo=1&foo=2 when
uri_with({ foo => 2 }, { mode => 'append' }) is called on a foo=1
URI.
5.80006 2009-06-29 23:37:47
Bug fixes:
- Revert change to URL encode things passed into $c->uri_for
Args and CaptureArgs as this causes breakage to pre-existing
applications.
- Remove use of Test::MockObject as it doesn't install from CPAN
in some environments.
- Remove use of dclone to deep copy configs and replace with
Catalyst::Utils::merge_hashes which has the same effect, of
ensuring child classes don't inherit their parent's config,
except works correctly with closures.
- Add Class::C3::reinitialize into Catalyst::Test to avoid weird
bugs in ctx_request (bokutin in RT#46459)
- Fix issues with _parse_PathPrefix_attr method in Catalyst::Controller
(jasonk in RT#42816)
- Fix bugs with action sorting:
- Path actions sorted so that the most specific wins.
- Action methods named default and index fixed.
New features:
- Use ~ as prefix for plugins or action classes which are located in
MyApp::Plugin / MyApp::Action (mo)
- Controller methods without attributes are now considered actions if
they are specified in config->{action(s)} (mo)
- Add Catalyst::Component::ContextClosure as an easy way to create code
references, that close over the context, without creating leaks.
Refactoring / cleanups:
- Clean namespaces in Catalyst::Exception*.
- Turn Catalyst::Exception into an actual class and make the throw
method create instances of it. They can still be used as normal
strings, as before, as they are overloaded to stringify to their
error message.
- Add a rethrow method to Catalyst::Exception.
- Add Catalyst::Exception::Detach and ::Go, and refactor detach() and
go() to use them instead of magic, global strings.
Fixes RT#47366
- Clean up getting metaclass instance and making app class immutable
again in Catalyst::Test
to 0.11 and adjusting license according to META.yml
Upstream changes:
0.11 2009-06-28 19:29:16
- Update Module::Install to 0.87 to unbreak auto_install.
No functional changes.
0.10012 to 0.10013
Upstream changes:
0.10013 Fri Jun 19 16:08:00 BST 2009
- Add a username_field config item to ::Credential::Remote
(Nigel Metheringham)
- Die with a useful error message if we are about to try to restore
a user from a realm which does not exist. (t0m)
meta-data (dependencies, master site).
Upstream changes:
0.24 2009-06-23
- Be more paranoid about getting values of $c->req to avoid issues
with old Test::WWW::Mechanize::Catalyst.
- Check we have a modern version of TWMC before doing the tests which
need it.
0.23 2009-06-16
- Add the verify_user_agent config parameter (kmx)
- Add a test case to prove that logging in with a session cookie still
causes a new cookie to be issued for you, proving that the code is
not vulnerable to a session fixation attack. (t0m)
and set license to ${PERL5_LICENSE} as well as correcting dependencies.
Upstream changes:
- The only change since December was I removed a reference to File::Slurp
- Updated package for p5 module Template::Toolkit from 2.20 to 2.21
- Set license to perl license according to META.yml
- Adjusting dependencies according to META.yml
Upstream changes:
#-----------------------------------------------------------------------
# Version 2.21 - 30th June 2009
#------------------------------------------------------------------------
* Fixed a PRE_CHOMP bug that left \r characters lying around when
confronted with templates with DOS \r\n line endings.
https://rt.cpan.org/Ticket/Display.html?id=43345
* Applied patch from Bradley Baetz to fix defblock #line numbers
http://rt.cpan.org/Public/Bug/Display.html?id=47024
#-----------------------------------------------------------------------
# Version 2.20_4 (2.21 candidate) - 21st May 2009
#------------------------------------------------------------------------
* Added the even(), odd() and parity() methods to Template::Iterator to
assist in making zebra tables.
* Removed a post-5.6 perlism in Template::Context that broke on 5.6.2
https://rt.cpan.org/Ticket/Display.html?id=46250
* Replaced a whole bunch of UNIVERSAL::isa() calls with blessed/isa
* Applied a patch from Norbert Buchm"uller to prevent the #line markers
from being whitespaced away from the first column.
https://rt.cpan.org/Ticket/Display.html?id=46269
* Applied a patch from Denis F. Latypoff to fix uri/url filters with
utf8 text
https://rt.cpan.org/Ticket/Display.html?id=41173
#-----------------------------------------------------------------------
# Version 2.20_3 (2.21 candidate) - 20th May 2009
#------------------------------------------------------------------------
* Fixed the XS Stash to compile properly in threaded Perls.
https://rt.cpan.org/Public/Bug/Display.html?id=46240
* Applied a patch to the XS Stash from Alexey A. Kiritchun to make the
scalar.length vmethod work correctly with utf8 strings.
http://lists.tt2.org/pipermail/templates/2009-May/010803.html
#-----------------------------------------------------------------------
# Version 2.20_2 (2.21 candidate) - 17th May 2009
#------------------------------------------------------------------------
* Applied a patch to Template::Test from Andrew Ford to make it skip
properly.
http://lists.tt2.org/pipermail/templates/2009-March/010678.html
* Changed the ttree -v/--verbose option so be less verbose and only
report on things that have changed. To make it more verbose (like
previous versions), add a second -v/--verbose flag, e.g.
$ ttree -v -v
* Also added the --summary option to tree to print a summary of what it
did, and the --color/--colour option to make it print its verbose
messages in colour (on ANSI terminals).
* Applied a ttree patch from Lyle Brooks to allow ttree to accept a
directory name as a command line argument.
* Added the define_view() and define_views() method to Template::Context
and added the VIEWS option to pre-define views when the Template object
is created. Thanks to Timmy Chan for providing the groundwork on this.
http://lists.tt2.org/pipermail/templates/2009-April/010689.html
* Retrospectively fixed the Changes for 2.20 to mention the ttree
--encoding option.
* Applied a patch from Chisel Wright, changing uses of UNIVERSAL::can()
to use blessed() and ->can().
http://lists.tt2.org/pipermail/templates/2009-May/010790.html
* Fixed a memory leak in the XS Stash introduced in 2.20.
Thanks to Breno G. de Oliveira for reporting the problem and helping to
narrow it down.
https://rt.cpan.org/Public/Bug/Display.html?id=46058
#------------------------------------------------------------------------
# Version 2.20_1 (2.21 candidate) - 7th April 2009
#------------------------------------------------------------------------
* Deleted all the old HTML documentation (now available separately from
http://tt2.org/download/index.html#html_docs), examples, libraries and
other cruft that was way out of date and badly unloved.
* Tweaked Template::Parser to work better with the ANYCASE option. It
now knows that anything following a dotop cannot be a keyword so that
you can write data.last without the 'last' bit being interpreted as the
LAST keyword. Thanks to Sean McAfee for the post that inspired it.
http://lists.tt2.org/pipermail/templates/2008-September/010462.html
* Fixed a broken test for Apache::Util in the html_entity filter. Added
the use_html_entities() and use_apache_util() class methods to
Template::Filters to allow end-user selection of one or the other.
http://rt.cpan.org/Public/Bug/Display.html?id=40870http://template-toolkit.org/svnweb/Template2/revision/?rev=1177
* Tweaked Template::Context to recognise Badger::Exception objects and
convert them to Template::Exception objects. This is a temporary
measure to keep things working during the transition to Badger-based
modules.
* Added the STRICT option which will cause the stash to throw an
exception on encountering an undefined value. Thanks to Ben Tilly
for the prod.
* Applied a patch to Template::Iterator from Jonathon Padfield to make
get_all() do the right thing if get_first() hasn't been called.
* Applied a patch to Template::Stash::Context from Ben Tilly to make
it easier to subclass.
* Applied a patch from Robin Berjon to add the xml filter.
- Updating package for p5 module LWP from 5.826 to 5.828
Upstream changes:
2009-06-25 Release 5.828
A quick new release to restore compatiblity with perl-5.6.
Gisle Aas (4):
Less noisy behaviour when we can't download the documents
Restore perl-5.6 compatiblity [RT#47054]
Don't decode US-ASCII and ISO-8859-1 content
Some versions of Encode don't support UTF-16-BE [RT#47152]
Ville Skytt"a (1):
Spelling fixes.
2009-06-15 Release 5.827
The main news this time is better detection of what character set the document
in a response uses and the addition of the lwp-dump script that I found useful.
Gisle Aas (31):
Added lwp-dump script
Replace calls to $req->url with $req->uri
Also need to encode strings in the latin1 range
Ignore the value set for file inputs [RT#46911]
Add docs to lwp-dump
Don't let lwp-dump follow redirects
Support --method options
Implement the --agent option
Dictionary order for the option docs; document --method
Merge branch 'dump'
Files are passed as an array and we must not stringify it.
Add content_charset method to HTTP::Message
Start guessing the charset for a message
Let content_charset guess the charset to use for decoded_content
Specify what's missing for the XML and HTML case
Provide charset parameter for HTML::Form->parse()
Make content_charset sniff for <meta> elements specifying the charset.
Determine charset of XML documents
Get rid of the _trivial_http_get() implementation
Update the bundled media.types file
LWP::Simple::get() now returns decoded_content [RT#44435]
Implement content_type_charset method for HTTP::Headers
Implement content_is_text method for HTTP::Headers
Make use of content_is_text and content_type_charset in decoded_content
Don't let the parse_head callback append to the HTTP headers
Don't set Range header on request when max_size is used [RT#17208]
Still show client headers for internal responses
Document Client-Warning: Internal response
Don't use 'no' as example domain for no_proxy docs [RT#43728]
Drop exit from the Makefile.PL [RT#43060]
Merge branch 'content_charset'
Alex Kapranoff (1):
Support "accept-charset" attribute in HTML::Form
Mark Stosberg (1):
new tests for max_size and 206 responses [RT#46230]
murphy (1):
Reformulation of Client-Warning: Internal documentation
- Updating package for p5 module HTML::Parser from 3.60 to 3.61
- Setting LICENSE=${PERL5_LICENSE} according to META.yml
Upstream changes:
2009-06-20 Release 3.61
Gisle Aas (2):
Test that triggers the crash that Chip fixed
Complete documented list of literal tags
Chip Salzenberg (1):
Avoid crash (referenced pend_text instead of skipped_text)
Antonio Radici (1):
Reference HTML::LinkExttor [RT#43164]
as dependency of scheduled update of databases/p5-Catalyst-Model-DBIC-Schema.
Adds a "COMPONENT" in Catalyst::Component method to your Catalyst component
base class that reads the optional traits parameter from app and component
config and instantiates the component subclass with those traits using
"new_with_traits" in MooseX::Traits from MooseX::Traits::Pluggable.
- Bug 2682: Add ftp_epsv control to disable EPSV support.
- Bug 2665: Detach automake system from using -I.
- Bug 2395: FTP auth errors not displayed
- ... also several changes and bugs closed in 3.0.STABLE16
- Port from 2.7: Show local address on listening sockets
- Add "tag" type acl matching tags set by external acl helpers.
- Adds Language alias linker/installer/upgrade scripts
- Support for GCC 4.4
- Fix false NAT lookup errors on Linux
- Fix many Windows port issues
- Fix squid_kerb_auth helepr install location
- Better detection of IPv6 stack types
- Updates Licensing information for Squid 3.1
- ... and many packaging portability build and install issues
1.) Allow individual "squid*" packages to register an extra target that
is run before the common "post-install" target.
2.) Use a much simpler logic to figure out what files get installed into
"share/squid/errors" and "share/squid/icons".
Tested with the "squid27" and the "squid31" package.
From release announce.
-----------------------------------------------------------------------
Dear TYPO3 users,
we are announcing the release of the following TYPO3 updates:
- TYPO3 4.2.8
- TYPO3 4.1.12
- TYPO3 4.0.13
All versions are maintenance releases and contain only bugfixes
and minor security improvements (no critical fixes of vulnerabilities).
Notice: Due to a bug which was reported to us short after the release of
TYPO3 versions 4.1.11 and 4.2.7, we stopped the release of the
announcement and prepared new versions that fix this (minor) issue.
TYPO3 4.0.13 which was already released yesterday was not affected by
this bug.
For details about the release, visit the following websites:
http://wiki.typo3.org/TYPO3_4.2.8http://wiki.typo3.org/TYPO3_4.1.12http://wiki.typo3.org/TYPO3_4.0.13
(This is a leaf package.)
Changes to squid-3.0.STABLE16 (15 Jun 2009):
- Bug 2672: cacheMemMaxSize 32-bit overflow during snmpwalk
- Bug 2481: Don't set expires: now in generated error responses
- Bug 2387: The calculation of the number of hash buckets correctly
- Fix infinite loop in MSNT auth helper
- Fix FD_SETSIZE on FreeBSD
- Fix stripping NT domain in squid_ldap_group
- Fix RADIUS auth helper build
- Add Translate: and Unless-Modified-Since: headers to known list
- Make fakeauth handle NTLMv2 better
- Better Kerberos support detection
- Several Widows port fixes
Changes to squid-3.0.STABLE16-RC1 (16 May 2009):
- Bug 1148: Ported from 3.1: Chunked Transfer Encoding
- Bug 2648: NTLM helpers not shutting down when deferred
It was accidently deleted by previous commit.
Also stop using PLIST.common_end here.
It should fix some bulk problem of squid27/squid30/squid31 packages.
Version 2.7.2 (2009-06-25)
--------------------------
- Improved navigation skip links (#815)
- Fixed a few PHP 5.3 compatibility issues (#783, #785, #786)
- Fixed issue with wrong duplicate newsletter recipient warning (#769)
- Fixed issue with files with special characters not being downloadable (#816)
- Fixed issue with date calculation in "edit multiple" mode (#809)
- Fixed issue with revision date not being set in "edit multiple" mode (#793)
- Fixed issue with news pagination menu not showing (#760)
- Fixed issue with news author notifications not working (#806)
- Fixed issue with "checkCredentials" hook (#811)
- Fixed a few minor issues
Security fixes in this version:
MFSA 2009-33 Crash viewing multipart/alternative message with text/enhanced part
MFSA 2009-32 JavaScript chrome privilege escalation
MFSA 2009-29 Arbitrary code execution using event listeners attached to an element whose owner document is null
MFSA 2009-27 SSL tampering via non-200 responses to proxy CONNECT requests
MFSA 2009-26 Arbitrary domain cookie access by local file: resources
MFSA 2009-24 Crashes with evidence of memory corruption (rv:1.9.0.11)
MFSA 2009-21 POST data sent to wrong site when saving web page with embedded frame
MFSA 2009-17 Same-origin violations when Adobe Flash loaded via view-source: scheme
For more info, see http://www.seamonkey-project.org/releases/seamonkey1.1.17/
* Remove pkglint warnings.
* Add PRINT_PLIST_AWK.
Some additons to Changelog.
* Japanese translation files' directory name is corrected.
* Korean translation files are added.
Changelog
=========
Since 1.4.1
-----------
- bugfix: Error when adding contacts when DEBUG mode is off and All workspace is selected
- bugfix: Tasks showed due date instead of start date
- bugfix: When editing an event on the 31st of a month it appeared on the 1st of the month
- bugfix: An error when making backups.
- bugfix: 'Number of tasks to display' config option fixed.
- bugfix: When creating a user from a contact it wasn't being assigned to the contact
- usability: Language selection displayed in alphabetical order
- usability: Custom properties are no longer truncated.
- langs: Updated translations
- Updating package of p5 module Catalyst::Component::ACCEPT_CONTEXT
from 0.06 to 0.07
- Use Module::Install as module type
- Adjusting license according to META.yaml
Upstream changes:
0.07 11 June 2009
Fix tests with Catalyst 5.80005
- Updating package for p5 module Catalyst::Plugin::Authentication
from 0.10011 to 0.10012
- Adjusting license according to META.yaml
- Use Module::Install as module type
Upstream changes:
0.10012 Sat Jun 6 10:58:43 BST 2009
- Add Catalyst::Authentication::Credential::Remote which authenticates you
directly from environment variables passed by your web server. This
allows the use of SSL client certificates, NTLM, or just basic/digest
auth done at the web server level to be used to authenticate users
to your Catalyst application (kmx)
- Tests for this
- Change ->config invocations to be best practices (t0m)
- Note about session auto-vification even when use_session is set
to false (robert).
- Note about how a realms key used to be needed to unconfuse people
running an old version, but browsing the docs on search.cpan (ruoso)
- Updating package of p5 module Catalyst::Devel from 1.17 to 1.18
- Adjusting dependencies according to META.yaml
Upstream changes:
1.18 2009-06-10 17:43:12
- The forking restarter was not waiting for the child to exit,
which could lead to a race condition. If the old child did
not exit before the new child tried to bind to its socket,
it would find the old child blocking the port it wanted.
- More fixes for the Win32 restarter. It was effectively
ignoring all command-line options except those related to
the restarter itself.
- Updating package of p5 module Catalyst::Runtime from 5.80004 to 5.80005
- Adjusting license and dependencies according to META.yaml
Upstream changes:
5.80005 2009-06-06 14:40:00
Behaviour changes:
- Arguments ($c->req->args) in Chained dispatch are now automatically
URL decoded to be consistent with Local/Path dispatch (Caelum)
Documentation:
- Clarify correct techniques for Moose controllers (domm)
Bug fixes:
- Further change pushing 'env' attribute down into Catalyst::Engine
to make $c->engine->env work in all cases (kmx)
- Also fix $c->engine->env in Catalyst::Test tests (kmx)
- Tests for this (t0m)
- Fix Catalyst failing to start if any plugin changed $_ whilst
loading (t0m)
- Tests for this
- Be stricter about arguments to Args attributes for Chained actions,
so that they blow up on load instead of causing undefined behavior
later on (hdp)
- Tests for this
- Prefer Path actions with a smaller (or set) number of Args (caelum)
Bug reported here: http://stackoverflow.com/questions/931653/catalyst-action-that-matches-a-single-file-in-the-root-directory/933181#933181
- Tests for this
New features:
- Add $c->req->remote_user to disambiguate from $c->req->user (dwc)
- Require MooseX::MethodAttributes 0.12 so that action methods
(with attributes) can be used in / composed from Moose roles.
- Allow the generation of cookies with the HTTPOnly flag set
- Updating package of p5 module for Catalyst::Manual from 5.7021 to 5.8000
- Setting license to ${PERL5_LICENSE} according to META.yaml
Upstream changes:
5.8000 27 May 2009
- Tutorial:
- Update for Catalyst 5.80
- Update to "depluralize" the database names (big thanks to Kiffin Gish!)
- Switch back to including numbers in chapter names (for proper sorting)
- Add section to Ch 4: "Moving Complicated View Code to the Model"
- Add section to Ch 3: "RenderView's 'dump_info' Feature"
- Misc fixes and updates (thanks to Anne Wainwright)
- Other:
- Add some 5.8 and Moose-specific material to the new CatalystAndMoose.pod
(thanks to t0m and Sebastian Willert)
- Updating package of p5 module for HTTP::Proxy from 0.22nb1 to 0.23
- Adjusting module type to Module::Build
- Setting license to ${PERL5_LICENSE} accroding to Makefile
Upstream changes:
0.23 Thu Sep 4 02:29:47 CEST 2008
[ENHANCEMENTS]
- HTTP::Proxy::BodyFilter::save had an issue with cygwin because
of an incorrect use of File::Spec's catdir(). This is fixed.
- CONNECT requests are now forwarded to the upstream proxy, if there
is one. Errors from the upstream proxy are relayed to the client.
[TESTS]
- t/23connect.t does not use sysread() anymore. This time the test
should pass about everywhere.
- Updating package of p5 module HTTP::DAV from 0.35 to 0.38
- Setting license to explicit 'gnu-gpl-v2 # OR artistic' as specified
in module's documentation
Upstream changes:
v0.38 (released 2009/06/09):
* bug fixes
- Fixed RT #14506 (http://rt.cpan.org/Public/Bug/Display.html?id=14506),
about the missing get_lastresponse() method. It was a documentation bug.
- Fixed RT #29788 (http://rt.cpan.org/Public/Bug/Display.html?id=29788),
avoid file corruptions on Win32 when calling HTTP::DAV::get() method.
- Fixed RT #31014 (http://rt.cpan.org/Public/Bug/Display.html?id=31014),
probably already in v0.34, since it seems related to propfind() "depth" bug.
v0.37 (released 2009/03/24):
* bug fixes
- Fixed RT #44409 (http://rt.cpan.org/Public/Bug/Display.html?id=44409),
Small bug in HTTP::DAV::put(). Passing a reference as local content resulted
in the "SCALAR(0x12345678)" being logged instead of the real scalar.
v0.36 (released 2009/02/25):
* bug fixes
- Fixed RT #19616 (http://rt.cpan.org/Public/Bug/Display.html?id=19616),
LWP::UserAgent::redirect_ok() is not changed anymore. We're subclassing
it from HTTP::DAV::UserAgent and overriding redirect_ok() there.
- Fixed RT #42877 (http://rt.cpan.org/Public/Bug/Display.html?id=42877),
HTTP::DAV::UserAgent::credentials() has been modified to behave like
LWP::UserAgent::credentials(), otherwise basic authentication breakages
can occur.
- Fixed a problem with C<-depth> argument to C<HTTP::DAV::propfind()> that
could lead to massive performance degradation, especially when running
C<propfind()> against large folders.
C<-depth> was set to 1 even when passed as zero.
Changes since 0.4:
* Rack is now managed by the Rack Core Team.
* Rack::Lint is stricter and follows the HTTP RFCs more closely.
* Added ConditionalGet middleware.
* Added ContentLength middleware.
* Added Deflater middleware.
* Added Head middleware.
* Added MethodOverride middleware.
* Rack::Mime now provides popular MIME-types and their extension.
* Mongrel Header now streams.
* Added Thin handler.
* Official support for swiftiplied Mongrel.
* Secure cookies.
* Made HeaderHash case-preserving.
* Many bugfixes and small improvements.
* Fix directory traversal exploits in Rack::File and Rack::Directory.
* SPEC changes.
* New middleware Rack::Lock.
* New middleware Rack::ContentType.
* Rack::Reloader has been rewritten.
* Major update to Rack::Auth::OpenID.
* Support for nested parameter parsing in Rack::Response.
* Support for redirects in Rack::Response.
* HttpOnly cookie support in Rack::Response.
* The Rakefile has been rewritten.
* Many bugfixes and small improvements.
OpenGoo is an easy to use Open Source Web Office.
Manage tasks, documents, contacts, e-mail, calendar, and more...
Manage project progress, track time, and bill your customers.
Access all information from a single and elegant dashboard.
Communicate with co-workers, clients and vendors.
- Fixed several security issues:
MFSA 2009-32 JavaScript chrome privilege escalation
MFSA 2009-31 XUL scripts bypass content-policy checks
MFSA 2009-30 Incorrect principal set for file: resources loaded via
location bar
MFSA 2009-29 Arbitrary code execution using event listeners attached
to an element whose owner document is null
MFSA 2009-28 Race condition while accessing the private data of a
NPObject JS wrapper class object
MFSA 2009-27 SSL tampering via non-200 responses to proxy
CONNECT requests
MFSA 2009-26 Arbitrary domain cookie access by local file: resources
MFSA 2009-25 URL spoofing with invalid unicode characters
MFSA 2009-24 Crashes with evidence of memory corruption (rv:1.9.0.11)
- Fixed several stability issues.
- Several issues were reported with the internal database, SQLite, which
have now been fixed by upgrading to a newer version.
- Fixed an issue where, in some specific cases, the bookmarks database
would become corrupt. (bug 464486)
- Updating package of p5 module for CGI::Simple from 1.109 to 1.112
- Adjusting dependencies according to META:yaml
- Setting LICENSE=${PERL5_LICENSE} according to META.yaml
Upstream changes since 1.109:
1.110 2009-05-24
- Added missing test to manifest / distro.
- Added a test to ensure the manifest is consistent.
- Migrated to git.
1.111 2009-05-28
- Implemented Michael Nachbaur fixes for multipart form data
handling.
1.112 2009-05-31
- (thanks bingos) added missing IO::Scalar dependency.
- Updating package for p5 module Catalyst::Devel from 1.15 to 1.17
- using ${PERL_LICENSE} as license
- using Module::Install support to avoid cpan invoked for feature
installs
Upstream changes:
1.17 2009-05-24 18:18:17
- Catalyst::Restarter::Forking loaded the threads and
Thread::Cancel module, even though it doesn't need them.
1.16 2009-05-23 17:29:29
- Catalyst prereq changed to 5.80. Thanks, kold! (jhannah)
- Fixed the restarter to actually work on Win32. The fix means
that the restarter is as slow as ever on Win32, but it
works. Thanks to Rodrigo for the bug report and suggestion
on how to fix it. (Dave Rolsky)
- Actually fix -p option for port number, as I failed to do it
right last time as I'm an idiot (t0m)
Version 7.19.5 (18 May 2009)
Daniel Stenberg (17 May 2009)
- James Bursa posted a patch to the mailing list that fixed a problem with
no_proxy which made it not skip the proxy if the URL entered contained a
user name. I added test case 1101 to verify.
Daniel Stenberg (11 May 2009)
- Balint Szilakszi reported a memory leak when libcurl did gzip decompression
of streams that had some parts (legitimately) missing. We now provide and use
a proper cleanup function for the content encoding submodule.
http://curl.haxx.se/mail/lib-2009-05/0092.html
- Kamil Dudka provided a fix for libcurl-NSS reported by Michael Cronenworth
at https://bugzilla.redhat.com/show_bug.cgi?id=453612#c12
If an incorrect password is given while loading a private key, libcurl ends
up in an infinite loop consuming memory. The bug is critical.
- I fixed the problem with doing NTLM, POST and then following a 302 redirect,
as reported by Ebenezer Ikonne (on curl-users) and Laurent Rabret (on
curl-library). The transfer was mistakenly marked to get more data to send
but since it didn't actually have that, it just hung there...
Daniel Stenberg (10 May 2009)
- Andre Guibert de Bruet correctly pointed out an over-alloc with one wasted
byte in the digest code.
Yang Tse (9 May 2009)
- Removed DOS and TPF package's subdirectory Makefile.am, it was only used
to include some files in the distribution tarball serving no other purpose.
Files from the DOS and TPF subdirectories are now included in the EXTRA_DIST
of the Makefile in the parent subdirectory.
Yang Tse (8 May 2009)
- Changed host name literal in several tests to one under the haxx.se domain.
- Renamed vc6 workspace and project files to avoid filename clash when used
for conversion to later VS versions.
Daniel Stenberg (8 May 2009)
- Constantine Sapuntzakis fixed bug report #2784055
(http://curl.haxx.se/bug/view.cgi?id=2784055) identifying a problem to
connect to SOCKS proxies when using the multi interface. It turned out to
almost not work at all previously. We need to wait for the TCP connect to
be properly verified before doing the SOCKS magic.
There's still a flaw in the FTP code for this.
Daniel Stenberg (7 May 2009)
- Made the SO_SNDBUF setting for the data connection socket for ftp uploads as
well. See change 28 Apr 2009.
Yang Tse (7 May 2009)
- Fixed an issue affecting FTP transfers, introduced with the transfer.c
patch committed May 4.
Daniel Stenberg (7 May 2009)
- Man page *roff problems fixed thanks to input from Colin Watson. Problems
reported in the Debian package.
- Vijay G filed bug report #2723236
(http://curl.haxx.se/bug/view.cgi?id=2723236) identifying a problem with
libcurl's TFTP code and its lack of dealing with the OACK packet.
Yang Tse (5 May 2009)
- Fixed the --ftp-port address of test #251 to the CLIENTIP address, and
reverted the change affecting test suite harness committed 4 May.
Daniel Stenberg (5 May 2009)
- Inspired by Michael Smith's session id fix for OpenSSL, I did the
corresponding fix in the GnuTLS code: make sure to store the new session id
in case the previous re-used one is rejected.
Daniel Stenberg (4 May 2009)
- Michael Smith posted bug report #2786255
(http://curl.haxx.se/bug/view.cgi?id=2786255) with a patch, identifying how
libcurl did not deal with SSL session ids properly if the server rejected a
re-use of one. Starting now, it will forget the rejected one and remember
the new. This change was for OpenSSL only, it is likely that other SSL lib
code needs similar fixes.
Yang Tse (4 May 2009)
- Applied David McCreedy's "transfer.c fixes for CURL_DO_LINEEND_CONV and
non-ASCII platform HTTP requests" patch addressing two HTTP PUT problems:
1) On non-ASCII platforms not all of the protocol portions of the PUT are
being translated to ASCII. 2) On all platforms the line endings of part of
the protocol portions are mangled from CRLF to CRCRLF if data->set.crlf or
data->set.prefer_ascii are set (depending on CURL_DO_LINEEND_CONV).
- Applied David McCreedy's patch to fix test suite harness to allow test FTP
server and client on different machines, providing FTP client address when
running the FTP test server.
Daniel Fandrich (3 May 2009)
- Added and disabled test case 563 which shows KNOWN_BUGS #59. The bug
report failed to mention that a proxy must be used to reproduce it.
Yang Tse (2 May 2009)
- Use a build-time configured curl_socklen_t data type instead of socklen_t.
Yang Tse (1 May 2009)
- Applied David McCreedy's patches "TPF-platform specific changes to various
files" and "http.c fix to Curl_proxyCONNECT for non-ASCII platforms", the
former with minor edits.
Daniel Stenberg (30 Apr 2009)
- I was going to fix issue #59 in KNOWN_BUGS
If the CURLOPT_PORT option is used on an FTP URL like
"ftp://example.com/file;type=A" the ";type=A" is stripped off.
I added test case 562 to verify, only to find out that I couldn't repeat
this bug so I hereby consider it not a bug anymore!
Daniel Stenberg (29 Apr 2009)
- Based on bug report #2723219 (http://curl.haxx.se/bug/view.cgi?id=2723219)
I've now made TFTP "connections" not being kept for re-use within libcurl.
TFTP is UDP-based so the benefit was really low (if even existing) to begin
with so instead of tracking down to fix this problem we instead removed the
re-use. I also enabled test case 1099 that I wrote a few days ago to verify
that this change fixes the reported problem.
Daniel Stenberg (28 Apr 2009)
- Constantine Sapuntzakis filed bug report #2783090
(http://curl.haxx.se/bug/view.cgi?id=2783090) pointing out that on windows
we need to grow the SO_SNDBUF buffer somewhat to get really good upload
speeds. http://support.microsoft.com/kb/823764 has the details. Friends
confirmed that simply adding 32 to CURL_MAX_WRITE_SIZE is enough.
- Bug report #2709004 (http://curl.haxx.se/bug/view.cgi?id=2709004) by Tim
Chen pointed out how curl couldn't upload with resume when reading from a
pipe.
This ended up with the introduction of a new return code for the
CURLOPT_SEEKFUNCTION callback that basically says that the seek failed but
that libcurl may try to resolve the situation anyway. In our case this means
libcurl will attempt to instead read that much data from the stream instead
of seeking and that way curl can now upload with resume when data is read
from a stream!
Daniel Stenberg (26 Apr 2009)
- Bug report #2779733 (http://curl.haxx.se/bug/view.cgi?id=2779733) by Sven
Wegener pointed out that CURLINFO_APPCONNECT_TIME didn't work with the multi
interface and provided a patch that fixed the problem!
Daniel Stenberg (24 Apr 2009)
- Kamil Dudka fixed another NSS-related leak when client certs were used.
- Bug report #2779245 (http://curl.haxx.se/bug/view.cgi?id=2779245) by Rainer
Koenig pointed out that the man page didn't tell that the *_proxy
environment variables can be specified lower case or UPPER CASE and the
lower case takes precedence,
Daniel Fandrich (21 Apr 2009)
- Added new libcurl source files to Amiga, RiscOS and VC6 build files.
Yang Tse (21 Apr 2009)
- Moved potential inclusion of system's malloc.h and memory.h header files to
setup_once.h. Inclusion of each header file is based on the definition of
NEED_MALLOC_H and NEED_MEMORY_H respectively.
Renamed libcurl's memory.h to curl_memory.h
Daniel Stenberg (20 Apr 2009)
- Leanic Lefever reported a crash and did some detailed research on why and
how it occurs (http://curl.haxx.se/mail/lib-2009-04/0289.html). The
conclusion was that if an error is detected and Curl_done() is called for
the connection, ftp_done() could at times return another error code that
then would take precedence and that new code confused existing logic that
works for the first error code (CURLE_SEND_ERROR) only.
- Gisle Vanem noticed that --libtool would produce bogus strings at times for
OBJECTPOINT options. Now we've introduced a new function - my_setopt_str -
within the app for setting plain string options to avoid the risk of this
mistake happening.
Daniel Stenberg (17 Apr 2009)
- Pramod Sharma reported and tracked down a bug when doing FTP over a HTTP
proxy. libcurl would then wrongly close the connection after each
request. In his case it had the weird side-effect that it killed NTLM auth
for the proxy causing an inifinite loop!
I added test case 1098 to verify this fix. The test case does however not
properly verify that the transfers are done persistently - as I couldn't
think of a clever way to achieve it right now - but you need to read the
stderr output after a test run to see that it truly did the right thing.
Daniel Stenberg (13 Apr 2009)
- bug report #2727981 (http://curl.haxx.se/bug/view.cgi?id=2727981) by Martin
Storsj
confusing as it set the method to either GET or HEAD. The example he showed
looked like:
curl_easy_setopt(curl, CURLOPT_PUT, 1);
curl_easy_setopt(curl, CURLOPT_NOBODY, 0);
The new way doesn't alter the method until the request is about to start. If
CURLOPT_NOBODY is then 1 the HTTP request will be HEAD. If CURLOPT_NOBODY is
0 and the request happens to have been set to HEAD, it will then instead be
set to GET. I believe this will be less surprising to users, and hopefully
not hit any existing users badly.
- Toshio Kuratomi reported a memory leak problem with libcurl+NSS that turned
out to be leaking cacerts. Kamil Dudka helped me complete the fix. The issue
is found in Redhat's bug tracker:
https://bugzilla.redhat.com/show_bug.cgi?id=453612
There are still memory leaks present, but they seem to have other reasons.
Daniel Fandrich (11 Apr 2009)
- Added new libcurl source files to Symbian OS build files.
- Improved Symbian support for SSL.
Yang Tse (10 Apr 2009)
- Daniel Johnson improved the MacOSX-Framework shell script to now perform all
the steps required to build a Mac OS X four way fat ppc/i386/ppc64/x86_64
libcurl.framework. Four way fat framework requires OS X 10.5 SDK or later.
Yang Tse (8 Apr 2009)
- Removed Sun compilers preprocessor block from curlbuild.h.dist, this also
removes it from the curlbuild.h file originally distributed by the cURL
project as this file is intended for systems not capable of running the
configure script. For those who have been building curl out of the source
code curl distribution tarball provided by curl.haxx.se the change implies
nothing. Previous change in this area committed 2 Apr becomes irrelevant.
Daniel Stenberg (6 Apr 2009)
- I clarified in the docs that CURLOPT_SEEKFUNCTION should return 0 on success
and 1 on fatal errors. Previously it only mentioned non-zero on fatal
errors. This is a slight change in meaning, but it follows what we've done
elsewhere before and it opens up for LOTS of more useful return codes
whenever we can think of them...
Yang Tse (2 Apr 2009)
- Fix curl_off_t definition for builds done using Sun compilers and a
non-configured libcurl. In this case curl_off_t data type was gated
to the off_t data type which depends on the _FILE_OFFSET_BITS. This
configuration is exactly the unwanted configuration for our curl_off_t
data type which must not depend on such setting. This breaks ABI for
libcurl libraries built with Sun compilers which were built without
having run the configure script with _FILE_OFFSET_BITS different than
64 and using the ILP32 data model.
Daniel Stenberg (1 Apr 2009)
- Andre Guibert de Bruet fixed a NULL pointer use in an infof() call if a
strdup() call failed.
Daniel Fandrich (31 Mar 2009)
- Properly return an error code in curl_easy_recv (reported by Jim Freeman).
Daniel Stenberg (18 Mar 2009)
- Kamil Dudka brought a patch that enables 6 additional crypto algorithms when
NSS is used. These ciphers were added in NSS 3.4 and require to be enabled
explicitly.
Daniel Stenberg (13 Mar 2009)
- Use libssh2_version() to present the libssh2 version in case the libssh2
library is found to support it.
Yang Tse (12 Mar 2009)
- Added missing Curl_read() return code checking in TELNET transfers.
- Pierre Brico found and fixed TELNET transfers not being aborted upon
a write callback failure.
Daniel Stenberg (11 Mar 2009)
- Kamil Dudka made the curl tool properly call curl_global_init() before any
other libcurl function.
Yang Tse (11 Mar 2009)
- Added missing TELNET timeout support for Windows builds. This issue was
reported by Pierre Brico.
Daniel Stenberg (9 Mar 2009)
- Frank Hempel found out a bug and provided the fix:
curl_easy_duphandle did not necessarily duplicate the CURLOPT_COOKIEFILE
option. It only enabled the cookie engine in the destination handle if
data->cookies is not NULL (where data is the source handle). In case of a
newly initialized handle which just had the cookie support enabled by a
curl_easy_setopt(handle, CURL_COOKIEFILE, "")-call, handle->cookies was
still NULL because the setopt-call only appends the value to
data->change.cookielist, hence duplicating this handle would not have the
cookie engine switched on.
We also concluded that the slist-functionality would be suitable for being
put in its own module rather than simply hanging out in lib/sendf.c so I
created lib/slist.[ch] for them.
- Andreas Farber made the 'buildconf' script check for the presence of m4
scripts to make it detect a bad checkout earlier. People with older
checkouts who don't do cvs update with the -d option won't get the new dirs
and then will get funny outputs that can be a bit hard to understand and
fix.
Daniel Stenberg (8 Mar 2009)
- Andre Guibert de Bruet found and fixed a code segment in ssluse.c where the
allocation of the memory BIO was not being properly checked.
- Andre Guibert de Bruet fixed the gnutls-using code: There are a few places
in the gnutls code where we were checking for negative values for errors,
when the man pages state that GNUTLS_E_SUCCESS is returned on success and
other values indicate error conditions.
- Bill Egert pointed out (http://curl.haxx.se/bug/view.cgi?id=2671602) that
curl didn't use sprintf() in a way that is documented to work in POSIX but
since we use our own printf() code (from libcurl) that shouldn't be a
problem. Nonetheless I modified the code to not rely on such particular
features and to not cause further raised eyebrowse with no good reason.
Daniel Fandrich (5 Mar 2009)
- Expanded the security section of the libcurl-tutorial man page to cover
more issues for authors to consider when writing robust libcurl-using
applications.
Yang Tse (5 Mar 2009)
- Fixed NTLM authentication memory leak on SSPI enabled Windows builds. This
issue was noticed by Chris Deidun.
Daniel Fandrich (4 Mar 2009)
- Fixed a problem with m4 quoting in the OpenSSL configure check reported
by Daniel Johnson.
Daniel Stenberg (3 Mar 2009)
- David James brought a patch that make libcurl close (all) dead connections
whenever you attempt to open a new connection.
1. After cleaning up a dead connection, "continue" instead of
returning FALSE. This ensures that we clean up all dead connections,
rather than just cleaning up the first dead connection.
2. Move up the cleanup for dead connections so that it occurs for
all connections, rather than just the connections which have the same
preferences as our current new connection.
Changes:
- We found out that WebKitWebHistoryItems were being kept with a
reference count of 2 instead of 1 as they should; nobody should be
relying on that, but if you hit reference counting problems with
items you were creating yourself, this is for you.
- You can now copy images from the web page to the clipboard.
- Improvements were made to the Plugin handling code.
- Scroll events will now be correctly reported to web applications.
- You can now embed arbitrary widgets as if it was a plugin, with
the new "create-plugin-widget" signal.
- The atk_text_get_text_{at,after,before}_offset methods are now
implemented for all boundary types except LINE_AFTER and
LINE_BEFORE.
- The usual stream of minor fixes and improvements, as always.
4.07 Sun May 31 2009: - Balint Szilakszi <szbalint at cpan.org>
- Fixed >32bit integer option passing to libcurl on 32bit systems.
(Thanks to Peter Heuchert for the report and fix suggestion!)
- The CURL_CONFIG environment variable can now be used to specify
which curl-config to use (contributed by claes).
- Fixed segfault when a string option with setopt was set to undef
(contributed by claes).
- Fixed incomplete cleanup routine at destruction time
(contributed by claes).
- Readded Easy.pm and Share.pm stubs so that they are indexed by
CPAN, thus avoiding complications with outdated versions appearing.
+ Save the activation status of extensions
+ Catch and ignore mouse buttons meant for horizontal scrolling
+ Improve panel detaching and how panels handle it
+ Add a Feed Panel extension
+ Add a Fixed-width Font Family preference
+ Support spell checking
+ Implement (optional) Speed dial feature
+ Support nicer error pages with WebKitGTK+ 1.1.6
+ Implement middle click to open menu items in tabs
+ Implement -s, --snapshot command line switch
+ Use libnotify (runtime dependency) for finished transfers
+ Add a Go button to the address entry
+ Always append tabs opened via middle/ double click on the tab bar
+ Implement Open new pages in: New window preference
+ Implement inline find with direct '.' and '/' hotkeys
+ Add basic support for @-moz-document in user styles
This in turn makes the build of ap2-perl with apache22 fail.
The patches committed here make ap2-perl build again.
They may not be sufficient to actually use the package in earnest, though.
- Bug 2656: Pinger dies with general protection fault
- Bug 2650: configure requires epoll_ctl in libepoll when --enable-epoll used
- Bug 2648: Authentificator processes deferring and don't shutdown.
- Bug 2645: allow squid to ignore must-revalidate
- Bug 2644: auth scheme initialization is broken
- Bug 2632: Make number of reforwarding tries configurable
- Bug 2628: --with-pidfile=PATH option to override DEFAULT_PID_FILE
[This problem was reported for pkgsrc in PR pkg/41521.]
- Bug 2627: HTCP Logging
- Bug 2615: Call libecap::adapter::Service::start() when finalizing config.
- Bug 2589: SNMP returning no data - wrong oid decoded
- Bug 2571: Squid with IPv6 fails to start on kernel without IPv6
- Bug 2559: Problem parsing /0 and /0.0.0.0
- Bug 2404: WCCP in mask mode is broken
- ... also all bugs closed by 3.0.STABLE14, 3.0.STABLE15, 3.0.STABLE16-RC1
- Complete Interception multiple NAT support
- Add Content-Disposition to the known headers list.
- Make PEER_TCP_MAGIC_COUNT configurable
- Fix pinger install location
- Enable TPROXY v4 spoofing of CONNECT requests
- ... and much documentation and code polishing
Wed May 13 02:30:21 BST 2009 - surfraw 2.2.5
* Replaced scaleplus elvi with comlaw.
* rfc: use HTML for RFCs and BCPs.
* Support '--' to indicate end of options, so, for instance,
"sr google -g -- foo -bar" works.
* debpackages, debcontents: update ubuntu release names.
In brief:
46933: Update StringManager to use Java 5 features. Patch provided by Jens Kapitza. (markt)
46990: Fix synchronization issues reported by FindBugs. Patch provided by Sebb. (markt)
Allow huge request body packets for AJP13. (rjung)
Manager application prints FAIL if application was deployed but failed to start (fhanik)
When shutdown port is disabled, print user friendly message and not a stack trace. (fhanik)
The invoker servlet has been deprecated and will be removed in Tomcat 7 onwards. (markt)
45154 Implement SEND_FILE behavior for SSL connections using NIO (fhanik)
For full details see:
http://tomcat.apache.org/tomcat-6.0-doc/changelog.html
Firefox 2.0.0.20 includes an additional security fix over Firefox 2.0.0.19 for
users of the Windows platform.
So no significant changes for Linux edition, but 2.0.0.19 is not available.
* Make SAML authentication assertion and Lasso session available in the
environement.
* Autogeneration of SP metadata. (Requires Lasso 2.2.2 or newer.)
* Multiple IdP support, with discovery service.
* Built in discovery service which tests the availability of each IdP,
and uses the first available IdP.
* Fix a mutex leak.
* MellonSecureCookie option, which enables Secure + HttpOnly flags on
session cookies.
* Better handling of logout request when the user is already logged out.
NetBSD Packages Collection.
Apache2::AuthCASSimple is an authentication module for Apache2/mod_perl2.
It allows you to authenticate users through a Yale CAS server. Users
do not need to log in if they are already authenticated by the CAS
server, only tickets are exchanged between Web client, Apache2
server and CAS server. If they are not yet authenticated, they will
be redirected to the CAS server login form.
You may want to run ikiwiki-transition deduplinks my.setup after
upgrading to this version of ikiwiki. This command will optimise
your wiki's saved state, removing duplicate information that can
slow ikiwiki down.
* ikiwiki-transition: If passed a nonexistant srcdir, or one not
containing .ikiwiki, abort with an error rather than creating it.
* Allow underlaydir to be overridden without messing up inclusion
of other underlays via add_underlay.
* More friendly display of markdown, textile in edit form selector (jmtd)
* Allow curly braces to be used in pagespecs, and avoid a whole
class of potential security problems, by avoiding performing
any string interpolation on user-supplied data when translating
pagespecs.
* ikiwiki-transition: Allow setup files to be passed to all subcommands
that need a srcdir.
* ikiwiki-transition: deduplinks was broken and threw away all
metadata stored by plugins in the index. Fix this bug.
* listdirectives: Avoid listing _comment directives and generally
assume any directive starting with _ is likewise internal.
* Re-enable python-support and add python:Depends to control file.
* ikiwiki-makerepo: Avoid using abs_path, as it apparently fails
on nonexistant directories with some broken perl versions.
* inline: Minor optimisation.
* add_link: New function, which plugins should use rather than
modifying %links directly, to avoid it accumulating duplicates.
* ikiwiki-transition: Add a deduplinks action, that can be used to
remove duplicate links and optimise a wiki w/o rebuilding it.
* external: Fix pagespec_match and pagespec_match_list. Closes: #527281
- Updating package for p5 module URI from 1.37nb1 to 1.38
- Adjusting dependencies according to META.yml
Upstream changes:
2009-05-27 Gisle Aas <gisle@ActiveState.com>
Release 1.38
Ville Skytt"a (3):
Spelling fixes.
Tatsuhiko Miyagawa (1):
skip DNS test if wildcard domain catcher (e.g. OpenDNS) is there
Gisle Aas (1):
Avoid "Insecure $ENV{PATH} while running with -T switch" error with perl-5.6.
Inspirerd by PR#39887.
Pkgsrc changes:
* Allow NetBSD>=5 cuurses
* LICENS=gnu-gpl-v2
Changes:
i(not available for 1.5.11, but it seems small changes).
Version 1.5.10 released
2008-07-28, 09:40 GMT
- shift+t now force reloads a selected feed, ignoring the last modified value
- Added a lot of OpenBSD supplied patches (Martynas Venckus)
- net-support.c: HTTP header only needs to be ASCII in the token
- conversions.c: Determine output charset with nl_langinfo()
- xmlparse.c: Convert feed title to target charset, too. Should probaly be in interface.c
- main.c, interface.h, interface.c: Add a signal handler for resizing to work on many other ncurses implementations
* Added a more reliable HTTP request class
* Added the "name" attribute to the FormSubmit widget (#702)
* Added automatic capitalization to the glossary module (#697)
* Added option to disable the table wizard cell magnifier (#716)
* Moved template "mod_message" to the front end module (#703)
* Fixed issue with mandatory password fields not being shown (#693)
* Fixed issue with "checkCredentials" hook only being executed once (#728)
* Fixed issue with insert tag "iflng" being cached (#707)
* Fixed issue with error pages sending the wrong redirect header(#749)
* Fixed issue with special characters in news links not being encoded (#747)
* Fixed issue with news pagination menu being calculated wrongly (#704)
* Fixed issue with aliases not being case-sensitive (#752)
* Fixed broken "shortened view" of the event list module (#694, #153)
* Fixed a couple of misspellings in the german translation (#701)
* Fixed a few issues with the new 2-column layout
* Fixed a few minor issues
Rehsack. apr1 is no longer an option; that's just the way it is.
Version 1.6.2
(09 May 2009, from /branches/1.6.x)
http://svn.collab.net/repos/svn/tags/1.6.2
User-visible changes:
* vastly improve memory usage with 'svn merge' (issue #3393)
* make default depth for merge 'infinity' (r37156)
* make 'status --quiet' show tree conflicts (issue #3396)
* allow '--set-depth infinity' to expand shallow subtrees (r37169)
* return an error if attempting to reintegrate from/to the repo root (r37385)
* don't store bogus mergeinfo for '--ignore-ancestry', foreign merges (r37333)
* don't allow merge of difference between two repos (r37519)
* avoid potential segfault with subtree mergeinfo (r36613, -15, -31, -41)
* recommend sqlite 3.6.13 (r37245)
* avoid unnecessary server query for implicit mergeinfo (r36509)
* avoid unnecessary server query during reverse merges (r36527)
* set depth=infinity on 'svn add' items with restricted depth (r37607)
* fixed: commit log message template missing paths (issue #3399)
* fixed: segfault on merge with servers < 1.6 (r37363, -67, -68, -79)
* fixed: repeat merge failures with non-inheritable mergeinfo (issue #3392)
* fixed: another memory leak when performing mergeinfo-aware merges (r37398)
* fixed: incorrect mergeinfo on children of shallow merges (issue #3407)
* fixed: pool lifetime issues in the BDB backend (r37137)
Developer-visible changes:
* don't fail if an embedding app has already initialized SQLite (issue #3387)
* resolve naming collisions with static stat() function in svnserve (r37527)
* fix an expectation for a failing dirent windows test (r37121)
Version 1.6.1
(10 Apr 2009, from /branches/1.6.x)
http://svn.collab.net/repos/svn/tags/1.6.1
User-visible changes:
* recommend Neon 0.28.4. (r36388)
* improve performance of 'svn merge --ignore-ancestry' (r36256)
* improve 'svn merge' performance with subtree mergeinfo (r36444)
* correctly proxy LOCK and UNLOCK requests (r36159)
* prevent a crash when updating old working copies (r36751)
* don't let svnmerge.py delete a nonexistent property (r36086, -767, -769)
* don't fail when upgrading pre-1.2 repositories (r36851, -7)
* allow escaping of separator characters in autoprops (r36763, -84)
* improve tempfile creation robustness on Windows (r36442, -3)
* fix change-svn-wc-format.py for 1.6.x working copies (r36874, -5)
* improve configure's detection of Berkeley DB (r36741, -2)
* don't allow foreign merges to add foreign mergeinfo (issue #3383)
* improve performance of 'svn update' on large files (r36389, et. al.)
* fixed: error leak and potential crash (r36860)
* fixed: parent directory handling on Windows (r36049, -50, -51, -131)
* fixed: unintialized memory errors (r36252, -3)
* fixed: potential working copy corruption (r36714)
* fixed: working copy upgrade error (r36302)
* fixed: pointer dereference error (r36783)
* fixed: error diff'ing large data with ignored whitespace (r36816)
* fixed: potential hang in ra_serf (r36913)
* fixed: problem with merge and non-inheritable mergeinfo (r36879)
* fixed: repeated merging of conflicted properties fails (issue #3250)
* fixed: excluding an absent directory segfaults (issue #3391)
Developer-visible changes:
* ensure svn_subst_translate_cstring2() properly flushes data (r36747)
* make serf report a base checksum to apply_textdelta (r36890)
* syntax updates for strict C89 compilers (r36799)
* update RPM scripts for RHEL4 (r36834)
* allow tests to be run with Python 2.6.1 on Windows (r36149, -50, -51, -56)
* allow building JavaHL with Visual Studio 2008 (r36954)
* stop setting default translation domain in JavaHL (r36955)
* fixed: warning with Python 2.6 and ctypes bindings (r36559)
* fixed: undefined references to svn_fs_path_change2_create() (r36823)
Version 1.6.0
(20 Mar 2009, from /branches/1.6.x)
http://svn.collab.net/repos/svn/tags/1.6.0
User-visible changes:
- General:
* Now require Windows 2000 or newer on Windows (r33170)
- Major new features:
* identical files share storage space in repository (issue #2286)
* file-externals support for intra-repository files (issue #937)
* "tree" conflicts now handled more gracefully (issue #2282, #2908)
* repository root relative URL support on most commands (issue #3193)
- Minor new features and improvements:
* pre-lock hook can now specify lock tokens via stdout (r32778)
* svnmucc: support '--with-revprop' (r29492)
* merge: log include-descendants in operational log (r30426, r30428)
* improved operational logging for 'svn switch' (r30517)
* new 'Header' keyword, similar to 'Id' but with full URL (r35386)
* warn/disallow when storing plain-text passwords (r31046)
* support KWallet and GNOME keyring for password storage (r31241, -337)
* client now caches SSL client cert passphrases (issue #2489)
* add '--prefix-file' option to 'svndumpfilter' (issue #2697)
* add '--ignore-externals' option to 'svn cp' (issue #3365)
* add '--with-no-revprops' to 'svn log' (issue #3286)
* new 'svnadmin pack' command to compress FSFS filesystems
* new SVNAllowBulkUpdates mod_dav_svn directive (issue #3121)
* new public mod_dav_svn URI syntax: path?[p=PEG][&r=REV] (r34076)
* new 'svnsync info' command to show synchronization information (r35053)
* conflict resolver supports display-conflict, mine-conflict and theirs-conflict
- Client-side bugfixes:
* faulty reflexive merges (issue #2897)
* buffer overflow on a 0 byte string buffer (r35968, -74)
* conflict resolver needed more useful 'diff' option (issue #3048)
* disable username assumption (issue #2324)
* more accurate usage message for 'svn log' (r30449)
* do not repeat merge if target has explicit mergeinfo (issue #2821)
* corruption when filtering self-referential mergeinfo (r30467)
* filter empty mergeinfo with self-referential mergeinfo (r30510)
* pay attention to partial replay from the server in svnsync (r30440)
* improved property name handling in svnsync (r30480)
* properly recognize the file:/// in repository with svnsync (r30482)
* svn+ssh SIGKILLs ssh processes (issue #2580)
* 'svn up'/'svn co' early abort with svn:externals (issue #3148)
* improve tempfile names for conflict resolver (issue #3166)
* ra_serf: 'svn merge' aborts (issue #3212)
* 'svn cleanup' failed on non-ASCII characters (issue #3313)
* 'svn update' fails on moved, modified file with local mods (issue #3354)
* easier use of NTLM for proxy with ra_neon (r29874)
* 2-url merge from DAV-accessed foreign repo makes bad wcprops (issue #3118)
* can't add .svn (and children) to your wc via '--parents' (r35819)
* improved performance removing unversioned directories (r36111)
* 'svn cp --parents' had path URL encoding issues (issue #3374)
* support shell quoting rules in externals definitions (issue #2461)
* new SVN_LOCALE_DIR environment variable for localization (issue #2879)
* scheme and domain name in urls handled case insensitive (issue #2475)
* merge: pick default revisions with peg revision in single url (r30455)
* many other minor bugfixes, optimizations, plugs of memory leaks, etc
- Server-side bugfixes:
* mod_dav_svn runs pre-revprop-change twice (issue #3085)
* mod_dav_svn ignores pre-revprop-change failure on delete (issue #3086)
* mod_dav_svn prevented lock breaks from being propagated to client (r29914)
* non-UTF8 filenames could enter repository (issue #2748)
* 'svnlook proplist' xml output (issue #2809)
* don't let mod_dav_svn hide errors from client (issue #3102)
* ra_serf failure during update (issue #3113)
* ra_serf comply with RFC 2617 in handling authentication headers (r35981)
* use both SHA1 and MD5 in the FS backends (r34388)
* many other minor bugfixes too numerous to list here
- Contributed tools improvements and bugfixes:
* commit-email.pl: Deprecated; use mailer.py instead (r31755, -67)
* svnmerge.py migration tool munged svn:mergeinfo ordering (issue #3302)
* And other random sundry stuff
Developer-visible changes:
- General:
* serf 0.3.0 required, when building with serf (r35586)
* require SQLite 3.4.0 or newer (r33520)
* allow the use of an in-tree SQLite amalgamation (r35263)
* svn_log_changed_path_t now includes a 'kind' field (issue #1967)
* BDB `changes' table inconsistency when APIs are misused (issue #3349)
* configure should prefer apr-1 over apr-0 if both are present (issue #2671)
* make 'Not Found' errors consistent between RA layers (issue #3137)
* fix a potential buffer overrun (r34374)
* many bug fixes and improvements to the test suite
- API changes:
* notification system for properties and revision properties (issue #783)
* make ra_svn's merge commit-revprops public (r30462, r30453)
* mod_dav_svn operational logging compatible with svnserve logging (r30518)
* improve speed of svn_client__get_copy_source() (issue #3356)
* if fsfs commit fails return SVN_INVALID_REVNUM (r35950)
- Bindings:
* new: ctypes python bindings
* many improvements to all bindings (Java, Perl, Python, and Ruby)
* respect CFLAGS in SWIG bindings (r35879)
* fix building Ruby bindings with Ruby 1.9 (r35852, r35883)
pkgsrc changes: overhaul this package.
* Add LICENSE.
* Clean up bmake's macros, such as addition of PRINT_PLIST_AWK.
Geeklog changes: too many chagnes to write here.
* New user-friendly installation.
* New Configuration GUI.
* New Webservice GUI.
* And more.
Please refer http://www.geeklog.net/docs/english/changes.html
for more information.
Fixed some security problems about SQL injection vulnerability.
o close more leaking file descriptors for CGI and daemon mode
o add subdirs for build "debug" and "small" versions
o clean up a bad merge / duplicate code
o make mmap() usage portable, fixes linux & ranges: support
o document the -f option
o daemon mode now serves 6 files per child
- Updating package for p5 module HTML::Tiny from 1.03nb1 to 1.05
- Setting gnu-gpl-v2 as license
Upstream changes:
1.05 2009-03-08
Add support for TO_JSON in json_encode.
1.04 2009-03-07
Make link default to being closed. See #40990.
- Updating package for p5 module CSS:Squish from 0.07nb1 to 0.08
- Setting gnu-gpl-v2 as license
- fix typo in homepage
Upstream changes:
0.08 Mon Apr 20 2009
* module doesn't work on perl 5.6.x and older
* update docs
- Updating package for p5 module Apache::Session from 1.87 to 1.88
- Setting gnu-gpl-v2 as license
- Adjusting dependencies according to META.yml (and perl core)
Upstream changes:
1.88 2008-12-20 by Alexandr Ciornii
- Apache::Session::Generate::MD5::validate will untaint data
- MIN_PERL_VERSION in Makefile.PL
- Updating package for LWP::Determined::UserAgent from 1.03nb1 to 1.04
- Setting gnu-gpl-v2 as license
Upstream changes:
2009-04-04 Jesse Vincent <jesse@cpan.org>
* Release 1.04 -- Keeping pace with LWP updates
* New Maintainer
* Resolves [cpan #42123] and [cpan #41508]
- Updating package for p5 module Catalyst::Runtime from 5.80003 to
5.80004
- Adjusting/reordering dependencies
Upstream changes:
5.80004 2009-05-18 17:03:23
- Rename the actions attribute in Catalyt::Controller to
_controller_actions to avoid name clashes with application
controller naming. (random)
- Test for using Moose in components which have a non-Moose base class
Fixed by 349cda in Moose 0.78 (t0m)
- Fix deprecation message for Catalyst::Dispatcher to refer
to the class actually calling the deprecated method. RT#45741 (t0m)
- Clarify limitations of $request->base and $request->secure.
(Phil Mitchell)
- Add 'use Catalyst' to documentation for a Moose MyApp class as
noted by dmaki. (t0m)
- Fix so that / (and other special characters) are URL encoded when
passed into $c->uri_for as Args/CaptureArgs (t0m)
- Fix development server so that $c->engine->env returns the correct
environment (t0m)
- Require Moose 0.78 to fix metaclass incompatibility issues (t0m)
- Require MooseX::MethodAttributes 0.10 and use
Moose::Meta::Class->initialize rather than Moose->init_meta to fix
bugs related to having a 'meta' method in your controller (t0m)
- Fix cases where your application failing to complie could cause perl
to report 'Unknown Error' (t0m)
- Support adding Moose::Roles to the plugin list. These are applied to
MyApp after plugins have been pushed onto @ISA (t0m)
- Fix calling $c->req->parameters as the first thing you do when
parse_on_demand is on (t0m)
Changes:
- Do not handle KeyEvents with Ctrl or Alt modifiers that we
otherwise know nothing about. Otherwise shortcuts defined in the
WebView will never be executed.
- Add information about the SVG index bounds check committed in r43590.
- For paste from middle button (button==2) we want to use
the GDK_PRIMARY_SELECTION. Implement the new getCurrentTarget
method in PasteboardHelperGtk by asking the WebView which
clipboard to use.
- Add glib-2.0 to the list of required package.
- (test_webkit_web_frame_create_destroy): Declare webView as a GtkWidget*
to fix pointer type incompatibility warnings.
- Make the scan program call g_thread_init(NULL) in addition to
g_type_init(), so that it actually works.
- Unify scrolling code via adjustments and keys. Use the WebCore
defined constants, since that's what people are most used to at
this point.
- Add missing call to notifyStatus in the committed case and a
missing property notify.
- When a download is requested by an ongoing request, use the already
provided response to set the suggested filename for the WebKitDownload
object, if available.
- Remove bogus extern "C" from some source files.
- Misc fixes to InspectorClientGtk: use g_filename_to_uri to
get the URI and use web_view_load_uri instead of the deprecated
web_view_open method for loading the URI.
- Add #if ENABLE(DATABASE) guards around database code so toggling
ENABLE_DATABASE off does not break builds.
- Implement load-status and progress properties on the view, as well as
load-status on the frame. This supersedes the different load signals
load-progress-changed, load-committed, load-done, load-started and
load-finished which are not only misnamed but broken by design.
- Fix memory leaks.
- Use strlen instead of g_utf8_strlen when calculating the size of
the data that is being given to webkit_web_frame_load_string to be
loaded, so that we don't miss any of the content.
- Fix mis-applied patch.
- Add a FrameLoaderClient callback for ResourceRetrievedByXMLHttpRequest.
- Provide a mechanism to create a quirks delegate for HTMLParser
- Add MessageSource and MessageLevel parameters to
ChromeClient::addMessageToConsole.
- Updating package for p5 module Catalyst::Controller::FormBuilder from
0.04 to 0.05
- Adjusting dependencies according to META.yml
- Adjust home page and comment
- Setting license to gnu-gpl-v2
Upstream changes:
0.05 08-05-09 15:12:26
Change from NEXT to MRO::Compat. Remove unneeded Class::Accessor::Fast
base classes (Chisel Wright)
- Updating package for p5 module Catalyst::Devel from 1.12 to 1.15
- Adjusting dependencies according to META.yml
Upstream changes:
1.15 2009-05-13 20:02
- Remove -p option for pid file, and restore it to the port number,
as it should be -port|-p (t0m)
- Document -pidfile in myapp_server.pl POD (t0m)
1.14_02 2009-05-11 04:29
- Small changes to work with File::ChangeNotify 0.03.
1.14_01 2009-05-11 03:45
- This release moves the restarter functionality into a new
module Catalyst::Restarter, that is not a Catalyst Engine
subclass.
The new restarter is simpler and more reliable, because it
does not try to test if a changed piece of code can be
compiled. It simply restarts the server whenever it detects
changes. This also makes it much faster.
However, this does mean that the server can simply die when
a changed file cannot compile. This is different than the
old behavior, where the server remained running without
incorporating the change.
Finally, the new restarter relies on File::ChangeNotify,
which is designed to accomodate per-OS methods of detecting
changed files. As of this writing, it currently ships with a
file watcher that uses inotify on Linux systems, and a
default fallback class that does everything in pure Perl.
1.13 2009-05-11 02:50
- add [-pidfile|-p] option for myapp_server.pl (caelum)
- Bump dependency on Config::General (caelum)
- On perls with c3 method dispatch, make sure Class::C3 is recent
enough to not produce warnings if it is already installed (caelum)
- add resources to META.yml (caelum)
- Updating package for p5 module CatalystX::CRUD::YUI from 0.018 to 0.019
- Adjusting dependencies
Upstream changes:
0.019 17 May 2009
* fix number of skipped tests in 01-rdbo.t
* switch from Class::C3 to MRO::Compat and update deps in Makefile.PL
* change Livegrid->new to accept 'c' arg instead of getting it from form->app.
This fixes bug affecting tests under perl 5.10.
- Updating package for p5 module Catalyst::Plugin::Session::Store::File
from 0.16 to 0.17
- Adjusting dependency version numbers
Upstream changes:
0.17 10 May 2009
- Add dependency on recent -Session to fix moose issues
- Updating package for p5 module Catalyst::Plugin::Session::Store::FastMmap
from 0.08 to 0.10
- Adjusting dependencies
Upstream changes:
0.10 13 May 2009
- Change tests to be compatible with Catalyst 5.80004
- Re-add /session-file prefix to the test session directory which was
present in 0.07. I can't see where this was removed, but the test
looks more correct with it. RT#45724
0.09 04 May 2009
- remove Win32 hack since Cache::FastMmap 1.29 supports Win32.
see https://rt.cpan.org/Ticket/Display.html?id=45642
GtkHTML-3.26.2 2009-05-18
-------------------------
Bug Fixes:
#581228 - tarball does not provide gtkhtml-editor (Gilles Dartiguelongue)
#578394 – HTML images cannot be scaled to more than 100 px (Matthew Barnes)
Updated Translations:
krishnababu (te)
Ivar Smolin (et)
- Updating package for p5 module HTML::Mason from 1.40 to 1.42
- Reordering dependencies (alphabetical order)
- Removing option for p5-Cache-Cache, because it's mandatory now
Upstream changes:
1.42 May 7, 2009
[ BUG FIXES ]
- Fix 10b-cache-chi.t to work with latest version of CHI - expire_if
and ref of cache changed
- Fixed a bug where attempting to load a module that failed to compile
in a Mason component could mask the compilation error. RT #39803.
- Fixed the print method in HTML::Mason::FakeApache. It was including
the object itself in the output. Patch by Martin Petricek. RT
#43035.
1.41 May 5, 2009
[ BUG FIXES ]
- This is a one-fix release to get this module working with the latest
version of Exception::Class (1.27).
- Updating package for p5 module Catalyst::Plugin::Session::Store::Delegate
from 0.03 to 0.04
- Adjusting dependencies
Upstream changes:
0.04
- Switch to Module::Install.
- Avoid test suite warnings with Catalyst 5.80
- Updating package for p5 module Catalyst::Plugin::Session::State::Cookie
from 0.10 to 0.11
- Adding patch to prevent install missing dependencies
Upstream changes:
0.11 2009-05-13
- Change TestApp so that the application is in t/lib, to make it easier
for Catalyst to force our package to be immutable.
- Updating package for p5 module Catalyst::Plugin::Session from 0.21 to
0.22
Upstream changes:
0.22 2009-05-13
- INSANE HACK to ensure B::Hooks::EndOfScope inlines us a new method right now
in Catalyst::Plugin::Session::Test::Store for Catalyst 5.80004 compatibility.
This change does not in any way affect normal users - it is just due to the
fairly crazy way that Catalyst::Plugin::Session::Test::Store works, and that
module is _only_ used for unit testing session store plugins pre-installation.
Session::Test::Store should be replaced with a more sane solution, and other
CPAN modules using it moved away from using it, but this change keeps stops
new Catalyst breaking other distributions right now.
- Updating package for Catalyst::Manual from 5.7020 to 5.7021
Upstream changes:
5.7021 8 May 2009
- Switch to SimpleDB for auth
- Switch to use of DBIx::Class::EncodedColumn for hashed & salted passwords
- Re-write PostgreSQL section in appendix
- Remove "create=dynamic" and only cover "create=static" for DBIC helper
- Rewrite / clean up a big chunk of Catalyst::Manual::Intro (Ian Wells)
- There is no Catalyst::Config, fix reference to it. (t0m)
- Misc minor adjustments
- Updating package for p5 module Rose::HTML::Objects from 0.602 to
0.603
- Adjusting dependency
Upstream changes:
0.603 (05.06.2009) - John Siracusa <siracusa@gmail.com>
* Fixed a bug that cause the class attribite on label tags not to
be cleared correctly. (Reported by Denis Moskowitz)
