without having to hack the Makefile(s).
makes it easier to downgrade to a previous nightly build (provided you
already have the distfile) by simply setting eg. MOZ_VER=20040525, as
I just had to do :)
Many improvements; see the installed file /usr/pkg/share/doc/cvsweb/NEWS or
http://www.freebsd.org/cgi/cvsweb.cgi/projects/cvsweb/NEWS?rev=1.26&content-type=text/x-cvsweb-markup
for more info.
Note: whilst (optional) support for CvsGraph 1.4.0, enscript 1.6.3
and CVSHistory 2.0 exists in this version, this package does
not specifically depend upon those products as the features that use
them are optional...
Changes in release 0.22.2:
* Fix build issues on AIX (Tony Bennett).
* Fix DeltaV commands on locked resources.
* Update to neon 0.24.6:
- SECURITY (CVE CAN-2004-0398): fix for sscanf overflow in date parsing
- * Fixed dirent.h includes inside dpid.
- * Fixed a slippery bug with certain interlaced gif images (BUG#500).
- * Fixed libpng-1.2.4 detection in configure.in.
- * Added proxy authentication support through the "http_proxyuser" option
in dillorc (the password is asked at run time).
- * Moved tooltips to DwStyle, tooltip event handling to DwPage, and applied
this also to the TITLE attribute of <a> and <abbr>.
- * Fixed a bug related to spaces after anchors and breaks.
- * Removed two "type punning" gcc warnings (dw_gtk_viewport.c).
* Added some missing "static" qualifiers.
* Improved a_Strbuf_chars() so no list reversion is required.
* Removed an unused data list (dns.c), and redundant code (selection.c).
* Switch one realloc() call to g_realloc(), to match g_free() (dpi.c).
* Removed unnecessary NULL-checks and NULL initializations.
* Added Html_get_attr_wdef(), it lets providing a default return value.
- * Fixed configure.in so pthreads are only linked where needed.
- * Modified a_Misc_stuff_chars for simplicity and removed a memory leak.
* Made the dpi framework send the HTTP query to the https dpi
(this allows for an SSL-lib dpi and for easier session caching).
* Cleaned up the int2void and void2int casts in CCC parameters.
* Added container|inline model information to the HTML element table, and
made the bug-meter and the parser aware of it. This both improves bug
detection and rendering.
* Fixed newly detected HTML bugs in bookmarks dpi and file.c.
* Fixed opening files with a ':' character in its name (again).
* Added binaryconst.h (allows for binary constants in C).
* Fixed The ladder effect with lists (BUG#534).
* Made the bug-meter detect tags lacking a closing '>' (BUG#532).
* Made the bug-meter detect excluded inline elements from <PRE>.
* Eliminated a segfault source with tricky <input> tags (BUG#552).
* Fixed <address> to render as a block element (BUG#527).
* Added a content test for "name" and "id" attribute values (BUG#536).
* Fixed the URL resolver handling of the "//" sequence in <path> (BUG#535).
* Added "show_extra_warnings" and removed "use_old_parser" (dillorc).
* Added minor support for the deprecated <MENU> element.
* Eliminated a race condition that produced segfaults when a dpi transfer
was cancelled before the contents were sent (a very rare case).
* Added a test for socklen_t in configure.in.
* Fixed the downloads dpi to handle both new savenames and target directory.
* GdkRgb: fixed handling of not usable system default visual and colormap.
* Made dillo recognize unhandled MIME types, and offer a download dialog!
(ports/lang/php4/files/patch-ext::pcre::php_pcre.c). Fixes a bug
(described at http://bugs.php.net/bug.php?id=27810) which causes
apache2 to dump core on receiving SIGHUP.
This is supposedly fixed in the next release of PHP.
Revision History
Version 3.05
1. Fixed uninitialized variable warning on start_form() when running from
command line.
2. Fixed CGI::_set_attributes so that attributes with a - are handled
correctly.
3. Fixed CGI::Carp::die() so as to avoid problems from _longmess()
clobbering @_.
4. If HTTP_X_FORWARDED_HOST is defined (i.e. running under a proxy), the
various functions that return HOST will use that instead.
5. Fix for undefined utf8() call in CGI::Util.
6. Changed the call to warningsToBrowser() in CGI::Carp::fatalsToBrowser
to call only after HTTP header is sent (thanks to Didier Lebrun for
noticing).
7. Patches from Dan Harkless to make CGI.pm validatable against HTML 3.2. 8. Fixed an extraneous "foo=bar" appearing when extra style parameters passed to start_html;
9. Fixed potential cross-site scripting bug in startform().
10. Fixed documentation to discuss list context behavior of form-element
generators explicitly.
11. Fixed incorrect results from end_form() when called in OO manner.
12. Fixed query string stripping in order to handle URLs containing
escaped newlines.
13. During server push, set NPH to 0 rather than 1. This is supposed to
fix problems with Apache.
14. Fixed incorrect processing of multipart form fields that contain
embedded quotes. There's still the issue of how to handle ones that
contain embedded semicolons, but no one has complained (yet).
15. Fixed documentation bug in -style argument to start_html()
16. Added -status argument to redirect().
Version 3.04
1. Fixed the problem with mod_perl crashing when "defaults" button
pressed.
Version 3.03
1. Fix upload hook functionality 2. Workaround for CGI->unescape_html()
3. Bumped version numbers in CGI::Fast and CGI::Util for 5.8.3-tobe
Version 3.02
1. Bring in Apache::Response just in case.
2. File upload on EBCDIC systems now works.
Version 3.01
1. No fix yet for upload failures when running on EBCDIC server.
2. Fixed uninitialized glob warnings that appeared when file uploading
under perl 5.8.2.
3. Added patch from Schlomi Fish to allow debugging of PATH_INFO from
command line.
4. Added patch from Steve Hay to correctly unlink tmp files under
mod_perl/windows
5. Added upload_hook functionality from Jamie LeTaul
6. Workarounds for mod_perl 2 IO issues. Check that file upload and state
saving still working.
7. Added code for underreads.
8. Fixed misleading description of redirect() and relative URLs in the
POD docs. 9. Workaround for weird interaction of CGI::Carp with Safe module
reported by William McKee.
10. Added patches from Ilmari Karonen to improve behavior of CGI::Carp.
11. Fixed documentation error in -style argument.
12. Added virtual_port() method for finding out what port server is
listening on in a virtual-host aware fashion.
Version 3.00
1. Patch from Randal Schwartz to fix bug introduced by cross-site
scripting vulnerability "fix."
2. Patch from JFreeman to replace UTF-8 escape constant of 0xfe with
0xfc. Hope this is right!
Version 2.99
1. Patch from Steve Hay to fix extra Content-type: appearing on browser
screen when FatalsToBrowser invoked.
2. Patch from Ewann Corvellec to fix cross-site scripting vulnerability.
3. Fixed tmpdir routine for file uploading to solve problem that occurs
under mod_perl when tmpdir is writable at startup time, but not at
session time.
Hightlights:
* User interface redesigned
* Added Chat client
* Added RSS newsfeeds
* Fast full-text indexing of e-mail messages
* Support for spell check (via aspell)
* Graphical smileys in chat and e-mail
Note: on upgrade, e-mail from previous Opera versions will be
reindexed for faster searching and sorting. The new e-mail format
is not backward compatible, so earlier versions of Opera
won't be able to read the mail once this happens.
For details, see:
http://www.opera.com/linux/changelogs/750/http://www.opera.com/linux/changelogs/750b1/
Changes with mod_ssl 2.8.17 (01-Nov-2003 to 11-May-2004)
*) Upgraded to Apache 1.3.31
*) Log the OpenSSL error stack contents if the crypto engine
load/init fails.
*) Fixed segfault in lookup of variable SESSION_ID
in case SSL_get_session() returns NULL.
*) Bugfix "dbm" session cache: the DBM file was closed
too early (before accessing the data).
*) Bugfix "shmcb" session cache for situations where
the session data is bigger than the cache size.
*) Adjusted all copyright messages to contain the new year 2004 ;)
Apache 1.3.31 Major changes
Security vulnerabilities
* CAN-2003-0987 (cve.mitre.org)
In mod_digest, verify whether the nonce returned in the client
response is one we issued ourselves. This problem does not affect
mod_auth_digest.
* CAN-2003-0020 (cve.mitre.org)
Escape arbitrary data before writing into the errorlog.
* CAN-2004-0174 (cve.mitre.org)
Fix starvation issue on listening sockets where a short-lived
connection on a rarely-accessed listening socket will cause a
child to hold the accept mutex and block out new connections until
another connection arrives on that rarely-accessed listening socket.
* CAN-2003-0993 (cve.mitre.org)
Fix parsing of Allow/Deny rules using IP addresses without a
netmask; issue is only known to affect big-endian 64-bit
platforms
New features
New features that relate to specific platforms:
* Linux 2.4+: If Apache is started as root and you code
CoreDumpDirectory, core dumps are enabled via the prctl() syscall.
New features that relate to all platforms:
* Add mod_whatkilledus and mod_backtrace (experimental) for
reporting diagnostic information after a child process crash.
* Add fatal exception hook for running diagnostic code after a
crash.
* Forensic logging module added (mod_log_forensic)
* '%X' is now accepted as an alias for '%c' in the
LogFormat directive. This allows you to configure logging
to still log the connection status even with mod_ssl
Bugs fixed
The following noteworthy bugs were found in Apache 1.3.29 (or earlier)
and have been fixed in Apache 1.3.31:
* Fix memory corruption problem with ap_custom_response() function.
The core per-dir config would later point to request pool data
that would be reused for different purposes on different requests.
* mod_usertrack no longer inspects the Cookie2 header for
the cookie name. It also no longer overwrites other cookies.
* Fix bug causing core dump when using CookieTracking without
specifying a CookieName directly.
* UseCanonicalName off was ignoring the client provided
port information.
A Wiki is a website that allows its users to add pages, and edit any
existing pages.
You can create a new kwiki website with a single command. The module
has no prerequisite modules, except the ones that ship with Perl.
It doesn't require a database backend, although it could be made to
use one. The default kwiki behaviour is fairly full featured, and includes
support for html tables. Any behaviour of the kwiki can be customized,
without much trouble.
User Interface/Editing
Bug fixes
* Windows platforms only: several transformations crashed.
* Fix crashes in the spell checker.
* GTK version: Amaya is now able to copy and paste utf-8 characters.
* A significant space were sometimes removed after a copy + paste
command.
CSS
Bug fixes
* Local CSS files were not reparsed when they are saved.
* Fix a confusion with classes, pseudo-classes, ids, and attributes.
* Amaya now generates an empty User style sheet ($AmayaHome/amaya.css)
if this file doesn't exist.
* Amaya didn't parse correctly non-quoted font family names containing
whitespace.
(X)HTML
Bug fixes
* Amaya generated a new line character after an <img> element within
headlines (<h1>, <h2>, etc.).
And more... please review http://www.w3.org/Amaya/User/New.html
* removed maximum user+password+hostname size limit
* removed maximum dir depth limit for FTP
* the ares build now requires c-ares 1.2.0 or later
* --tcp-nodelay and CURLOPT_TCP_NODELAY were added
* curl/curlver.h contains the libcurl version info now
* bugfixes
the maintainer. Sort PLIST.
Changes:
* correct ifdef in LYgetattrs() to ensure that getattrs() is used only
if the configure script actually found it
(report/patch by Paul Gilmartin).
* correct LYcommandList() to allocate data passed to HTList_addObject(),
since LYRemoveFromCloset() may free it (report by FLWM) -TD
* add a null-pointer check to parameter of HTQuoteParameter(), fixes bug
introduced in 2.8.5pre.4 (report by FLWM) -TD
* correct units shown by HTReadProgress() for very low rates - bug from
2.8.5pre.3 changes (report by PG) -TD
* update current-version in README -LP
o 2004-03-11 15:29 (Cosmetic)
Helper queue warnings inprecice on the number of helpers required
o 2004-03-12 10:13 (Cosmetic)
Add pkg-config support for finding correct OpenSSL compile flags
o 2004-03-19 09:02 (Medium) "Vary: *" is ignored
o 2004-03-19 09:12 (Minor) 100% CPU usage on Linux-2.2
o 2004-03-19 09:17 (Cosmetic)
Version number includes -CVS if autoconf is run
o 2004-03-29 09:47 (Minor)
deny_info redirection with requested URL escaped wrongly
o 2004-03-29 10:02 (Minor) CONNECT timeout should produce a 504 or 503
o 2004-04-03 13:54 (Cosmetic)
cache_swap_log documentation referred to swap.state by it's old
swap.log name
o 2004-04-06 14:12 (Cosmetic)
ntlm/auth_ntlm.c(683): warning #187: use of "=" where "==" may
have been intended
o 2004-04-11 09:19 (Medium) rfc1035NameUnpack: Assertion (*off) < sz failed
o 2004-04-18 01:33 (Major)
Segment violation when using a blank user name in digest authentication
o 2004-04-18 23:46 (Medium)
assertion failed: errorpage.c:292: "mem->inmem_hi == 0"
o 2004-04-20 12:30 (Cosmetic)
Spelling corrections in configure and squid.conf.default
o 2004-04-20 12:38 (Cosmetic)
Clarify meaning of ERR in digest helper protocol
o 2004-04-20 12:38 (Cosmetic)
Spelling error in Turkish ERR_DNS_FAIL
o 2004-04-24 14:10 (Minor)
Negative cached 404 replies with VARY header never matches
o 2004-04-30 00:01 (Minor)
range_offset_limit -1 KB rejected as invalid syntax
* Look for "id" attribute of anchor element as XHTML 1.0 deprecates
"name" attribute. (bug 137854) [Sven Neumann]
* Use focus-width when restyling box. (bug 125290) [Balamurali Vishwnanthan]
* Fix crasher bug in gnochm when displaying new page. (bug #135489).
Epiphany 1.2.5
==============
Bugfixes
* Make saving a web page not re-fetch the page (Christian) [#141652]
* Fix crash on startup (Marco) [#141262]
Translations
* Duarte Loreto (pt)
Documentation
* New translation of help into Basque (eu) by
Hizkuntza Politikarako Sailburuordetza
* Updated screenshots in help (Piers)
* Updated help on smart bookmarks (Piers, patch by "gatto") [#139616]
Epiphany 1.2.4
==============
Bugfixes
* Fix problem with font selection in prefs dialogue (Christian)
* Fix encoding of downloaded and saved content (Marco) [#126571, #141050]
* Fix crash when closing a window while in print preview
mode (Christian) [#121298]
Translations
* John C Barstow (mi)
Bluefish 0.13 features a new bookmarks functionality, much improved
project management, auto tag closing, better navigation trough opened
documents, a much more responsive user interface, again many user
interface improvements, many bug fixes and much, much more!
http://cgi-spec.golux.com/
mentions SCRIPT_NAME but not SCRIPT_FILENAME.
Support web servers that only supply the former, even though
PHP 4.3 wants the latter to operate as a CGI...
Fixes problem using PHP 4.3 under a variety of non-Apache web servers.
as a copy of SCRIPT_NAME with the leading `/' removed.
Note that SCRIPT_FILENAME is _not_ a CGI/1.1 environment variable per
http://cgi-spec.golux.com/
If SCRIPT_FILENAME is not set set PHP 4.3.6 as a CGI fails with
No input file specified.
Apache sets this variable; it appears that many other CGI/1.1 compliant
web servers do not and thus PHP 4.3.6 as a CGI doesn't function with them.
"oh joy."
KEYS: overview of all keys [installed by the package]
Support for braille terminal
Updated Estonian translation
More svgalib modes added
Cursor on selected line in bookmarks (for Braille terminals)
Fixed --disable-graphics and --disable-javascript
Fixed encoding bug in javascript when modifying form element value and
default value.
Fixed crash when document changes under us and user presses 'd'
Fixed crash when pressed '=' on page with incomplete frames
Do not strip filename when relative url begins with '?'
SSL fix on OS/2
Do not timeout when file upload lasts too long
Terminal mouse handling returned back before change from
Thu Oct 9 16:44:10 GMT 2003
Copy and paste to clipboard
Selecting text to clipboard
Allow '?' instead of '/' as separator of host and path in url
Ask for overwrite when file exists.
Fixed memory leak with read-only select boxes
textarea wrap=hard
Added language hints to encodings.
Strip '#' of tag names
Disallow network options in anonymous mode
Fixed wrong error code and fd leak on error when uploading files
Fixed incorrect parsing of '&' entities in image maps
Do not hang when opening filo with file://
Fixed crash when url contains character with code 1
Fixed a security bug --- hiding url was possible with character code 1
Updated Upper Sorbian translation
Updated Polish translation
Allow urls: file:///d:/directory/file on OS/2
Fixed proxy sent in referrer
Upper Sorbian translation
Fixed user in smb
Support directories without '/' at the end on just another ftp server
Do not call memset from signal handler
Disable AC_BIG_ENDIAN and AC_LITTLE_ENDIAN name clash
Use pkg-config to find openssl
Fixed signal-delivery delay
Fixed crash in view_gr.c when displaying source
Fixed cache problems with long files in smb and when restarting http
Removed useless reallocs, speed up rendering
Do not send more Authorization headers
Detect infinite loop in authorization responses
FreeBSD frames
revision 1.53
date: 2004/04/24 10:36:15; author: grant; state: Exp; lines: +2 -1
make sure we link with the correct rpath on Solaris.
----------------------------
revision 1.52
date: 2004/04/24 10:35:23; author: grant; state: Exp; lines: +2 -2
don't pass "-Q option" to ${LD}, it isn't needed and the Solaris linker
errors on it.
----------------------------
revision 1.51
date: 2004/04/23 15:32:04; author: taya; state: Exp; lines: +2 -2
catch up to current statvfs support
Bl3ify and enable pkgviews installation.
Changes since 0.10:
- Clarify the relationship between this module and HTML::TreeBuilder
in the documentation. [suggested by Gisle Aas]
- Moved regression tests from test.pl to t/basic.t
- Use Test.pm to output testing results.
- Avoid an 'undefined value' warning when creating a SimpleParse
object with an empty string.
- Fixed a problem that caused an infinite loop in certain bizarre
(and as yet unduplicated by me) situations. Reported by Peter Suschlik.
- Added a Build.PL script to build & install via Module::Build.
which installs to ${RCD_SCRIPTS_EXAMPLEDIR}. But the MESSAGE
referred to wrong hard-coded location if the RCD_SCRIPTS_EXAMPLEDIR
was not the default. So use RCD_SCRIPTS_EXAMPLEDIR instead.
PKGREVISION not bumped because if someone had changed
RCD_SCRIPTS_EXAMPLEDIR before recent change of autoregistration
of rc.d script in PLIST, then it could not have been packaged
in first place.
Note that this commit does not imply that the MESSAGE is correct.
In some cases, the MESSAGE is clearly wrong such as suggesting
running the rc.d script from the example directory (which will work
although).
the RCD_SCRIPTS rc.d script(s) to the PLIST.
This GENERATE_PLIST idea is part of Greg A. Woods'
PR #22954.
This helps when the RC_SCRIPTS are installed to
a different ${RCD_SCRIPTS_EXAMPLEDIR}. (Later,
the default RCD_SCRIPTS_EXAMPLEDIR will be changed
to be more clear that they are the examples.)
These patches also remove the etc/rc.d/ scripts from PLISTs
(of packages that use RCD_SCRIPTS). (This also removes
now unused references from openssh* makefiles. Note that
qmail package has not been changed yet.)
I have been doing automatic PLIST registration for RC_SCRIPTS
for over a year. Not all of these packages have been tested,
but many have been tested and used.
Somethings maybe to do:
- a few packages still manually install the rc.d scripts to
hard-coded etc/rc.d. These need to be fixed.
- maybe remove from mk/${OPSYS}.pkg.dist mtree specifications too.
"pancake" pancake at phreaker dot net.
Screws is an experimental web server with extensibility in mind. It's
designed in a little core that processes connections and petitions, setenv
the spected values and calls an external program or script that processes
this and shows what it wants. By this way it's possible to customize
every answer of the web server, and extend it as we want in a simple way.
Some features are:
- UID/GID/CHROOT directives
- Dynamic Module loading (security, optimization, extensions, etc..)
- HSML (Embed scripts into HTML) Like PHP but using your prefered language.
- Support for perl, sh, python, lua, brainfuck, Java...
- Portable code: tested on Solaris, *BSD, GNU/Hurd, Darwin...
- IPv4/IPv6 support
Changes are bug-fixes mostly, but also synchronizes bundled GD
with GD 2.0.22 and updates PCRE to version 4.5. Several NetBSD
patches were integrated too, so future pkgsrc updates would
be even more smooth.
Full list of changes since PHP 4.3.4 is available at:
http://www.php.net/ChangeLog-4.php#4.3.6http://www.php.net/ChangeLog-4.php#4.3.5
Changes:
* VPL: don't lose the comment text from inside a comment
* make removal of top folders added with "New Top Folder" possible
* never crash when invoking the CSS editor on an empty document
* don't crash when invoking the CSS editor after a <style> without the
closing </style>
* other CSS editor invocation fixes
* don't change the tab name if saving under a new name failed
* use the correct quotation and case when inserting a link to a file from
the treeviews
* fix preview when preview prefix is used
* remove the < and > from the misc. tag
* don't crash when parsing an included file
* don't break the opening tag when some new tag is pasted inside an
existing one
* don't insert the closing tag for a Tag action if it is not requested to
do so
* performance improvement: parse the included files less often
* 2004-04-08
cameron:
scripts/squid_redirect: Move % unescaping into the zap pattern
matching function so that $words[0]
remains undamaged. Previously a %20 in an
input URL which hit a PASS rule (or no rule)
transmuted into a bare space, and other
nasty chars could do likewise - I imagine
a %0a would really break stuff.
Rod Savard reported this issue, which
breaks chained redirectors, on 29mar2004.
* 2004-03-31
cameron:
rc/patterns: popups from popup.scambiositi.com
* 2004-03-07
cameron:
scripts/squid_redirect: Jean-Pierre Radley reports that the
/usr/bin/env trick fails because SCO
OpenServer 5.0.x has /bin/env, not
/usr/bin/env. So I've reverted to the
older, simpler system, undoing the
suggestion of Petri T. Koistinen.
Mykefile: Use $HOMEHOST instead of hardwiring "amadeus".
* 2004-03-06
cameron:
scripts/squid_redirect: Set #! line to #!/usr/bin/env perl on
suggestion from Petri T. Koistinen.
rc/patterns: popup at www.military.com from John Woodstock
falkag.(de|net) pattern updates from Nick Leverton
* 2004-02-03
cameron:
rc/patterns: PRINT rule for sciencedaily.com
planetark.com PRINT rule
* 2004-01-31
cameron:
rc/patterns: self ads at bigfoot
* 2004-01-29
cameron:
rc/patterns: more SWF ads
* 2004-01-26
cameron:
rc/patterns: content.ad-flow.com GIFs
.falkag.net GIFs
* 2004-01-22
cameron:
rc/patterns: another PRINT rule for abc.net.au
* 2004-01-20
cameron:
rc/patterns: ads from klipmart.dvlabs.com, seen at forbes.com
* 2004-01-19
cameron:
rc/patterns: widen http://servedby.advertising.com/** on report
from Billy Newsom big exception for webmail.aol.com
from Neal Macklin exception for NYTIMES article
about popup ads
* 2004-01-14
cameron:
rc/patterns: bar.hit-counter.udub.com
* 2004-01-08
cameron:
rc/patterns: raise priority of .yimg.com PASS rule on report from
Mike Mitchell
in this version (and AFAICT, it doesn't work or I haven't been able to find
a way to get it working).
Code changes
* Cleanup chrome handling (Marco)
Bugfixes
* Fix bookmarks import from XBEL (Marco)
* Set window icon on "About" dialogue (Christian)
* Fix "Add" button appearance for some themes (Christian)
* Fix "Go" button (Christian)
* Fix "Open In New Tabs" from bookmarks editor (Christian) [#138343]
* Fix context menu for anchors without href (Christian) [#138200]
* Fix context menu for linked images (Christian) [#138200]
* Fix startup script on solaris (Marco) [#138088]
* Fix filechooser handling (Federico Mena Quintero) [#138263]
* Fix compilation with -fdata-sections (Christian) [#136878]
* Check for invalid font size pref (Piers)
* Fix clear-history dialogue button size with themes (Piers)
* Fix bookmarks toolbar visibility in fullscreen and ppview
mode (Christian) [#138520]
* Fix link dragging to new notebook tabs (Christian) [#138902]
* Sync toolbar code with galeon gtk 2.4 port; fixes crash when
dragging items from other applications (Crispin Flowerday)
* Fix homepage setting to current page (Christian) [#139124]
* Make pdm, prefs and print setup dialogue transient (Christian)
* Sort the actions in location entry drop-down (Christian) [#139575]
* Don't quit filechooser when choosing not to overwrite an
existing file (Christian) [#139400]
* Fix filename encoding in confirm-overwrite dialogue (Christian)
* Fix accel setting for dynamic menus (Christian) [#139641]
* Don't gunzip downloaded files (Marco) [#131778]
* Fix content policy contract ID (Christian)
* Fix chrome handling for new windows from _blank target links
(Marco) [#139512]
* Make message selectable in content handler dialogue (Piers)
* Translations: bg, eu, is, hu, no, pa, ru
support for SSL/TLS connections with PHP. It is necessary to compile SSL
support in PHP to be able to use TLS-enabled sockets. The openssl PHP
module does not include that functionality.
"WWW::Mechanize", or Mech for short, helps you automate interaction
with a website. It supports performing a sequence of page fetches
including following links and submitting forms. Each fetched page
is parsed and its links and forms are extracted. A link or a form
can be selected, form fields can be filled and the next page can
be fetched. Mech also stores a history of the URLs you've visited,
which can be queried and revisited.
Changes in release 0.24.5:
* SECURITY (CVE CAN-2004-0179): Fix format string vulnerabilities in
XML/207 response handling, reported by greuff@void.at.
* Performance fix: avoid seeding the SSL PRNG if not creating an SSL socket.
* ne_ssl_readable_dname() is now defined to return UTF-8 strings.
* Fix case where gssapi/gssapi_generic.h was included but not present.
* Fix ne_utils.c build on platforms where zlib does "#define const".
* Fix use of ne_proppatch_operation with some C++ compilers.
* Update libtool for fix to --enable-shared on Darwin.
* BeOS: check for gethostbyname in -lbind (David Reid).
Changes in release cadaver 0.22.1, 14 April 2004 (PGP signature)
* Restore DASL/DeltaV support (GRASE team).
* Fix to only use netrc on first attempt at authentication.
* Update to neon 0.24.5:
o SECURITY (CVE CAN-2004-0179): fix for format string
vulnerabilities
Changes in release cadaver 0.22.0, 10 September 2003 (PGP signature)
* Fix build on BSD platforms, or if using bundled expat library.
* Fixes for some URI encoding issues.
* Update to neon 0.24.1:
o only support PKCS#12-encoded client certs, using
the "client-cert" option.
* Support --with-libs argument to configure.
* (Drop DASL/DeltaV support temporarily).
This package contains modules for manipulating client request data via
the Apache API with Perl and C. Functionality includes:
- parsing of application/x-www-form-urlencoded data
- parsing of multipart/form-data
- parsing of HTTP Cookies
ExtUtils::XSBuilder is a set modules to parse C header files and create XS
glue code and documentation out of it. Idealy this allows to "write" an
interface to a C library without coding a line. Since no C-API is ideal,
some adjuments are necessary most of the time. So to use this module you
must still be familar with C and XS programming, but it removes a lot of
stupid work and copy&paste from you. Also when the C API changes, most
of the time you only have to rerun XSBuilder to get your new Perl API.
among other things, this fixes a problem on at least Solaris and Linux
which causes apache children to SEGV on startup. I've tested this
version on Darwin and Linux.
changes since 1.25:
1.29 - Oct 7, 2003
Add a workaround for the 'rand' bug for perl 5.8.1 (compiled with
either -DUSE_HASH_SEED or -DUSE_HASH_SEED_EXPLICIT, which is the
default), causing all forked procs to produce the same rand
sequence. [Stas]
Fix t/net/perl/sym.pl (called by modules/symbol) not to affect other
tests (internal/http-get and internal/http-post, which were failing to
call exit) [Stas]
Fix Apache::ExtUtils to work with blead perl (it was breaking the
build) http://rt.perl.org/rt2/Ticket/Display.html?id=23803 [Stas]
1.28 - July 2, 2003
Apache::FakeRequest now isa Apache so code that is carefull about
$r and checks that $r->isa('Apache') will not fail [David Wheeler
<david@kineticode.com]
Add Mac OS X support to Apache::SizeLimit [David Wheeler
<david@kineticode.com>]
Change Apache::SizeLimit to not push a cleanup handler if already in
the cleanup handler phase, and adjust docs to show that cleanup
handler is the preferred phase to use [Perrin Harkins
<perrin@elem.com>]
Rename Apache::test to Apache::testold because Apache::test on
case-insensitive systems will collide with Apache::Test which
supercedes Apache::test. So if you want to keep on using Apache::test,
either bundle it with your project (putting it under inc/ or t/ so it
won't be installed) or require mod_perl 1.28 and use Apache::testold
instead. Of course the best route is to port your test suite to use
a much better Apache::Test which work with mod_perl 1.0 and 2.0.
[Philippe M. Chiasson, Stas Bekman]
Tweak mod_perl.h to defined _INCLUDE_APACHE_FIRST only after apache
headers were included [Stas Bekman]
avoid various warnings under src/modules/perl/:
- declare bufsiz to be STRLEN in Apache.xs, and add
STRLEN to Apache/typemap
- add I32 typecast in Constants.xs
- avoid use of unregistered local variables for Win32
in mod_perl.c and perl_config.c
- s/I32/U8/ in mod_perl.h, perl_config.c, and perl_util.c
- declare i and http_code to be STRLEN in perl_util.c
[Stas Bekman, Randy Kobes]
don't use $r variable in Apache::PerlRun::compile(), so the script
won't use use inherited $r by mistake [Stas Bekman]
use touch() from ExtUtils::Command, rather than a system touch(),
for the benefit of platforms without touch(). [Randy Kobes
<randy@theoryx5.uwinnipeg.ca>]
can't let the default typemap rule to convert sv into char* in
unescape_url, since it doesn't handle correctly undefs (returns an
unallocated "" string, which then causes a segfault in
ap_unescape_url. use SvPV_force, instead, which does the right
thing. [Stas Bekman]
Make sure to start perl, if it's not running, before processing Perl*
directives, with threaded perl and PERL_STACKED_HANDLERS=0 [Stas
Bekman]
Add Apache::Module to Bundle::Apache [Stas Bekman]
use $Config{'installstyle'} instead of hardcoded 'lib', to handle
Makefile.PL's PREFIX option correctly [Philippe M. Chiasson
<gozer@cpan.org>]
prevent segfaults in mod_perl_mark_where() when a sub can't get
resolved [Gerald Richter <richter@ecos.de>]
Apache::Status: Need to load B::Terse/TerseSize if it wasn't loaded
yet in that child before using it. [Dan Sully <daniel@electricrain.com>]
document the server_root_relative() method [Stas Bekman <stas@stason.org>]
eliminate warnings when flushing functions with empty () prototypes in
Apache::PerlRun::flush_namespace [Yair Lenga <yair.lenga@citigroup.com>]
fix Apache::Status to not use :: in filenames, which is not allowed on
certain OSs [DH <crazyinsomniac@yahoo.com>]
various cygwin fixes [Per Einar Ellefsen <per.einar@skynet.be>]
Document the possible misuses of the Apache::Constant constants
[Per Einar Ellefsen <per.einar@skynet.be>]
1.27 - June 1, 2002
workaround Cwd bug in 5.8.0-RC1 that breaks apache configuration on solaris
fix get_set_PVp() to properly set NULL values when passing in undef
thanks to Lyle Brooks for the spot
[Stephen Clouse <stephenc@theiqgroup.com>]
Apache::Registry/PerlRun/RegistryNG errors are now saved
in $r->notes('error-notes')
[Jesse Erlbaum <jesse@vm.com>]
make sure DynaLoader is loaded before XSLoader to workaround possible
segv when using mod_perl as a dso with perl 5.6.1
autoset PERL_USELARGEFILES=0 if needed
fix taint issues with bleedperl
fix bug in modules/util test
[Tatsuhiko Miyagawa <miyagawa@edge.co.jp>]
Adjust the mailling list addresses
's|\@apache\.org|\@perl.apache.org|' [Stas Bekman <stas@stason.org>]
Apache::PerlRun will now localize $SIG{__{DIE,WARN}__}
thanks to Jon Coulter for the spot
PERL5LIB support now properly unshifts paths into @INC rather than push
[Tatsuhiko Miyagawa <miyagawa@edge.co.jp>]
do not clear symbol tables within a package in perl_clear_symtab()
used by directive handler extensions
[Stephen Clouse <stephenc@theiqgroup.com>]
properly deal with $r->status codes (e.g. redirect) in
Apache::RegistryNG [Geoff Young <geoff@modperlcookbook.org>]
fix multiple %LocationMatch in <Perl> sections bug
[Salvador Ortiz Garcia <sog@msg.com.mx>]
rip -D_GNU_SOURCE out of Perl 5.7.3+'s ccflags, which modperl doesn't
need and apache won't compile with [Stas Bekman <stas@stason.org>]
make sure PerlSetEnv variables are visible after first access
to each child [Geoff Young <geoff@modperlcookbook.org>]
workaround Apache::Constants::AUTOLOAD problem with bleedperl
the first flag argument to perl cannot start with space, since perl tries
to open the " -spi.bak" as a file. fix that in the win32 case.
[Stas Bekman <stas@stason.org>]
starting from perl 5.7.3 for tied filehandles, tiedscalar magic is applied
to the IO slot of the GP rather than the GV itself. adjust the TIEHANDLE
macro to work properly under 5.7.3+. [Charles Jardine <cj10@cam.ac.uk>,
Stas Bekman <stas@stason.org>]
added perl_perl_merge_dir_config and array_header2avrv symbols to
mod_perl.def for win32 and mod_perl.exp for aix.
[Randy Kobes <randy@theoryx5.uwinnipeg.ca>]
INSTALL.apaci: added an explanation of how perl has to be built in
order to use DSO without problems (copied from the guide) based on
email from Doug. [Stas Bekman <stas@stason.org>]
warn if Perl is configured with -Duseshrplib and a libperl.so is found
in a place where it should not be, example: /lib /usr/lib or /usr/local/lib
fix potential segv in Apache::URI->rpath
[Vyacheslav Zamyatin <slawa@w-m.ru>]
require URI::URL to work with newer libwww-perl
allow overriding of container directive handlers using the func parameter
[Geoffrey Young <gyoung@laserlink.net>]
enable directive handler support for TAKE13
[Geoffrey Young <gyoung@laserlink.net>]
1.26 - July 11, 2001
fix 'make test' problem seen with Perl 5.005_03
remove $r->finfo usage from Apache::PerlRun, clearly finfo isn't as
stable as it should be
[Surat Singh Bhati <surat@indiamart.com>]
Apache->server will now point the current VirtualHost when inside a
<Perl> section, thanks to Robin Berjon for the spot
allow per-server and per-location PerlSetEnv to be properly merged
when a per-server handler is configured, thanks to Michael Barry for
the spot
1.25_01 - July 6, 2001
add symbols to mod_perl.exp for aix/axkit
add Apache::add_version_component() function
make sure Apache::ExtUtils can be found when building inside of the
apache source tree, thanks to Jonathan Swartz for the spot
fix -[TB] file tests against $r->finfo, thanks to Geoffrey Young for
the spot
Apache::SizeLimit enhancements [Perrin Harkins <perrin@elem.com>]:
- Added support for minimum shared memory and maximum unshared memory
settings.
- Added extra diagnostics to tell how many requests a process served,
how long it lived, and how much shared memory it was using when
SizeLimit killed it.
perl_destruct_level must always be 2 for DSO builds to prevent
leaking on restarts, thanks to Paul G. Weiss for the spot
make sure file to be reloaded can be found in @INC, adjusting based on
%INC value if needed
[Ilya Konstantinov <modperl@future.galanet.net>]
croak if the filehandle passed to $r->send_fd is NULL, otherwise
apache will segfault
if PREFIX is given to Makefile.PL add it to @INC at startup
[Philippe M . Chiasson <gozer@cpan.org>]
add %Apache::MyConfig aliases for Apache::src backwards compat
[Philippe M . Chiasson <gozer@cpan.org>]
$r->custom_response($code, undef) will now unset the current CustomResponse
[Geoffrey Young <gyoung@laserlink.net>]
fix to compile with sfio+ithreads, thanks to Joe Schaefer for the spot
adjust perl_clear_symtab() to deal properly bleedperl's version of
cv_undef() (which broke modules with directive handlers)
thanks to Geoffrey Young for the spot
add $r->allowed method [Philippe Troin <phil@fifi.org>]
fix 'make offsite-tar' [Geoffrey Young <gyoung@laserlink.net>]
fix double-loading bug of Perl{Require,Module}s at startup time
improve Apache::MyConfig [Stas Bekman <stas@stason.org>]
$r->no_cache(0) will unset cache headers
[Geoffrey Young <gyoung@laserlink.net>]
export hvrv2table (needed by Apache::Request) for aix and win32
[Jens-Uwe Mager <jum@helios.de>, Randy Kobes <randy@theoryx5.uwinnipeg.ca>]
fix 'make tar_Apache' [Geoffrey Young <gyoung@laserlink.net>]
make sure global for Apache->request is reset after configuring %ENV
[Gerald Richter <richter@ecos.de>]
adjust 'U' magic functions to Perl 5.7.x-dev prototype change
Put Apache's CFLAGS into AP_CFLAGS instead of CFLAGS, so that
people who like to override CFLAGS from the make line (make
CFLAGS='-arch ppc -arch i386') can do so without stomping the
Apache flags. [ Wilfredo Sanchez <wsanchez@KnowNow.com> ]
1.5.1:
This release fixes a crash on Solaris, improves behaviour with
compressed HTTP content, adds support for combining multiple category
filters, and fixes a few user interface inconsistencies.
1.5.0:
This release adds digest authentication support, improved handling
of HTML feed descriptions, user customizable conversion of HTML
entities, many GUI improvements, and other smaller bugfixes.
SECURITY [CAN-2003-0020]: escape arbitrary data before writing into the errorlog
The three patches are from Apache cvs.
http://cvs.apache.org/viewcvs.cgi/apache-1.3/src/
Also bump PKGREVISION too.
