From Kai-Uwe Eckhardt in PR 51639.
2.18 07/11/2016 (JHI)
- Capture also the STDERR when checking tar exe
2.16 01/11/2016 (JHI && CBERRY)
- Make roundtrip tar exe finding robust for crappy tars
2.14 20/10/2016
- Fix roundtrip test when tar executable is absent
2.12 16/10/2016 (KHW && JKEENAN)
- Fix pod in bin/ptar
- Distinguish between archives with/without directory entries
Upstream changes:
2.10 27/07/2016 (TONYC)
- CVE-2016-1238: avoid loading optional modules from default .
2.08 12/05/2016
- Add the roundtrip test to MANIFEST
2.06 24/04/2016 (ISHIGAKI && BOOK)
- changed some of the "A"s in the UNPACK constant to "a"
to allow trailing whitespaces in an archived filename
- roundtrip tests
Problems found with existing distfile for eagle:
distfiles/bicom101.zip
distfiles/szip-2.1nb3/szip-2.1.tar.gz
distfiles/xmill-0.9.1.tar.gz
No changes made to these distinfo files.
Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden). All existing
SHA1 digests retained for now as an audit trail.
{perl>=5.16.6,p5-ExtUtils-ParseXS>=3.15}:../../devel/p5-ExtUtils-ParseXS
since pkgsrc enforces the newest perl version anyway, so they
should always pick perl, but sometimes (pkg_add) don't due to the
design of the {,} syntax.
No effective change for the above reason.
Ok joerg
Do it for all packages that
* mention perl, or
* have a directory name starting with p5-*, or
* depend on a package starting with p5-
like last time, for 5.18, where this didn't lead to complaints.
Let me know if you have any this time.
1.96 24/10/2013
- integrate Package::Constants into Constant module
and remove requirement on it.
1.94 24/10/2013
- install into site if >= 5.012
1.93_02 22/10/2013 (XLAT)
- [rt.cpan.org #78030] symlinks resolution on MSWin32
a) refer 'perl' in their Makefile, or
b) have a directory name of p5-*, or
c) have any dependency on any p5-* package
Like last time, where this caused no complaints.
from 1.84 to 1.90.
upstream changes:
* important changes in version 1.90 05/09/2012 (Tom Jones)
- documentation fixes
* important changes in version 1.88 01/06/2012 (Markus Prosch)
- resolved chown won't work on symlinks
* important changes in version 1.86 24/05/2012 (Mark Allen)
- don't use tell on IO::Zlib handles RT#64339
archivers/p5-Archive-Tar from 1.82 to 1.84.
- adding comment why Perl5.10.1 is enough to fulfil IO::Compress::*
Upstream changes:
* important changes in version 1.84 02/03/2012 (HMBRAND)
- ptar now supports -T option [rt#75473]
- ptar now supports dashless options [rt#75475]
- auto-encode filenames marked as UTF-8 [rt#75474]
ChangeLog from upstream:
* important changes in version 1.82 21/11/2011 (CDRAKE)
- Adjustments to handle files >8gb (>0777777777777 octal)
- Feature to return the MD5SUM of files in the archive
tar ball handling) from 1.76 to 1.80.
Upstream changes:
* important changes in version 1.80 13/10/2011
- patch from Rocky Bernstein to add file chown() method [rt#71221]
* important changes in version 1.78 08/09/2011
- patch from Rocky Bernstein to add chown() method [rt#70623]
- blead patch from Alexandr Ciornii to resolve [perl#78708]
* important changes in version 1.72 18/11/2010
- Apply patch from Grant McLean to update docs for
ptargrep
* important changes in version 1.70 15/11/2010
- Add ptargrep utility courtesy of Grant McLean
Upstream changes:
* important changes in version 1.68 17/08/2010
- Apply a patch from Colin Newell that checks whether long files can be created or
not in 02_methods.t. Hopefully resolves RT #57312 and RT #56163
to trigger/signal a rebuild for the transition 5.10.1 -> 5.12.1.
The list of packages is computed by finding all packages which end
up having either of PERL5_USE_PACKLIST, BUILDLINK_API_DEPENDS.perl,
or PERL5_PACKLIST defined in their make setup (tested via
"make show-vars VARNAMES=..."), minus the packages updated after
the perl package update.
sno@ was right after all, obache@ kindly asked and he@ led the
way. Thanks!
pkgsrc changes:
- mark package included in Perl5 CORE
Upstream changes:
* important changes in version 1.66 26/07/2010
- Applied a patch from Alexandr Ciornii [RT#59699] to Makefile.PL which
produces better META.yml
- Apply a patch from Alexandr Ciornii to ptar [RT#59700]:
Adds option -C to allow archives created with ptar to be uploaded to
PAUSE in case of Windows or world +w permissions on unix.
* important changes in version 1.64 09/07/2010
- Removed the PERL_CORE specific chdir from all the tests
- Apply a patch from David Muir Sharnoff RT #58916,
"skip files via a callback and limit memory use when skipping files"
- Apply a patch from Daphne Pfister RT #59150
"Assumes all references filename are IO::Handle's instead of trying
to stringify."
* important changes in version 1.62 28/06/2010
- Apply part of patch from
https://bugzilla.redhat.com/attachment.cgi?id=426194
reported by Martin Cermak in RT #58636 relating to a Redhat ticket
https://bugzilla.redhat.com/show_bug.cgi?id=606813
* important changes in version 1.60 23/04/2010
- Apply patch from Darrell K. [RT #54850] that makes write() and
create_archive() close only handles they opened.
When you pass a filehandle to Archive::Tar::write() or create_archive(),
it closes the filehandle after writing to it. I think it makes more
sense not to close a handle that A::T didn't open, since the application
may need to write additional data to it. (Consider sockets, package
files containing encapsulated tar archives, etc.)
Example:
$ perl -e 'use Archive::Tar; open(PKG, ">mypkg") or die "open: $!"; my
$tar = Archive::Tar->new; $tar->add_data("foo.txt","hello");
$tar->write(\*PKG); print PKG "more data" or die "print: $!";'
print: Bad file descriptor at -e line 1.
- Fool the installer into replacing our scripts that were installed by
core with versiononly set.
pkgsrc changes:
- "drop" explicit core dependency
Upstream changes:
* important changes in version 1.58 17/02/2010
- Apply a patch from toddr@null.net that addreses RT #54714
Subject: $@ not cleaned up after eval
This section of code seems to be trying to use future functionality
not yet present in IO::Zlib (tell). I was chasing another bug and
getting very confused by this population of $@. Could I request you
cleanup $@ if you expect and/or don't care about failure from this eval?
* important changes in version 1.56 03/02/2010
- Apply a patch from Mark Swayne that addresses RT #50471;
Archive::Tar generates file headers with space padded numbers for size,
mtime and checksum. This format is incompatible with some versions of
the busybox implementation of tar (I am using 1.13.2), which requires 0
padded numbers (despite comments in the source that say otherwise).
I've included a patch that adds a control flag that enables zero padded
numbers in the header. It passes all tests with ActiveState Perl 5.8.8
on WinXP.
Upstream changes:
* important changes in version 1.54 10/09/2009
- Apply a patch from Niko Tyni (ntyni@debian.org) that resolves RT #48879;
As seen in [rt.cpan.org #48879], although the recommended way of
retrieving the last error is to use an instance method ($tar->error),
the returned value is effectively global: an error in one Archive::Tar
instance changes the error string of another instance.
This change separates the error strings from each other while keeping
the (deprecated) global value of $Archive::Tar::error pointing to the
last error regardless of its instance.
We also support calling error() as a class method (Archive::Tar->error).
In this case it returns the global value, which matches the old behaviour.
- Updating package of p5 module Archive::Tar from 1.48 to 1.52
- Setting LICENSE to ${PERL5_LICENSE} according to module documentation
Upstream changes:
* important changes in version 1.52 13/06/2009:
- Apply documentation patch to describe IBM APAR issue IZ50240; AIX tar
does not always end a Tar archive with a 0x00 null block, which can
cause warnings from Archive::Tar.
This is a documentation patch only, and users of 1.50 need not upgrade.
* important changes in version 1.50 12/06/2009:
- Apply patch in #46450: Support for --no-same-permissions style behavior
This facilitates leaving the +x bit, while still applying your umask on
the extracted file.
- Updating package for p5 module Archive::Tar to 1.48
Upstream changes:
* important changes in version 1.48 20/04/2009:
- Address #44680 (Improve error reporting on short corrupted archives)
Archives of less than 512 bytes would not have a clear error string set
- Requires at least IO::Compres::* 2.015, to address: #43609: Memory
problem with A::T. Turns out 2.012 was leaking memory.
- Updating to 1.46
Upstream changes:
* important changes in version 1.46 05/03/2009:
- Address: bug #43513: [PATCH] Accept wrong checksums from SunOS and HP-UX tar
like GNU tar does. See here for details:
http://www.gnu.org/software/tar/manual/tar.html#SEC139
- make COMPRESS_BZIP and COMPRESS_GZIP constants actually work and fix their
documentation
Oked by rhaen@
* important changes in version 1.44 19/01/2009:
- Address #41798: Nonempty $\ when writing a Tar file produces a
corrupt Tar file
- Textual fix to Makefile.PL diagnostics
Changelog:
-no changelog for 1.41-
* important changes in version 1.42 13/12/2008:
- Address #40426: Archive Tar to support direct Archive::Tar::File adds
It is now possible to add Archive::Tar::File objects via $tar->add_files
- Address #40016 (Archive::Tar assumes $> won't change): CAN_CHOWN is now a
dynamic check upon extraction. This allows scripts to drop privileges when
desired
- Address take 2 of #39933: [PATCH] handle ../ directory name on VMS
John M. sent in a better way to do directory name translation.
XXX: Automatic handling and plain entries don't work for symlinks
for ptar and ptardiff, no idea why. Added PLIST entries like the following
for this reason:
@unexec ${RM} -f %D/bin/ptar 2>/dev/null || ${TRUE}
* important changes in version 1.40 13/10/2008:
- Add $class->has_zlib_support and $class->has_bzip2_support to
discern which A::T can support
- Address: #39933: [PATCH] handle ../ directory name on VMS (core patch)
* important changes in version 1.39_04 08/09/2008:
- Address: #38932: pax_global_header extracted as file
Don't extract these special files, which are added by, among
others, git-generated tarballs. It holds a comment and is not
meant for extraction. This follows gnu tar 1.14 and later behaviour
- Address: #19577: extract_file() drops volume part of extraction path
Windows users can now extract files to a different volume
* important changes in verison 1.39_03 26/08/2008:
- Because all the IO::Compress modules are interlinked, they must be
the same version when installed, or breakage will occur like shown
at this tester report:
http://www.nntp.perl.org/group/perl.cpan.testers/2008/08/msg2083310.html
Mailed the author to find a less fragile solution, but for now we require
all the individual modules, and all at the same version.
* important changes in version 1.39_02 25/08/2008:
- Address #31806: Please add support for bzipped tar files.
Archive::Tar now supports reading/writing tar.bz2 files.
- Since IO::Zlib is now core, it is now a default dependency.
- Added Package::Constants as a dependency to ease the use of A::T::Constants
- Dependency on IO::Compress::Bzip2 and IO::Uncompress::Bunzip2 is on
by default, but can be negated with the -n switch when building:
'perl Makefile.PL -n'
- Improve documentation on the new ->iter function
* important changes in version 1.39_01 22/08/2008:
- Address the second part mentioned in this report:
#30380: directory traversal vulnerability in Archive-Tar
Archives are no longer allowed to extract into symlinked directories,
unless Insecure Extract Mode is enabled (which is off by default).
- Add regression tests for this behaviour
- Address #33669 (Could not update timestamp warning on symlinks)
Don't update timestamps on symlinks, they'll modify the original
- Apply core patch: [patch@33971] Archive::Tar was building corrupt
archives on VMS as supplied by John Malmberg
- Address #37375: ptar should allow '-' as an archive_file name
Patch provided by glenn jackman
- Add convenience method ->extract() to A::T::File
- improve docs of A::T::File by adding rv & object in the header
- Address #38580: [PATCH] Archive::Tar->iter
This adds an iterator to Archive::Tar, thanks to Gisle Aas
to trigger/signal a rebuild for the transition 5.8.8 -> 5.10.0.
The list of packages is computed by finding all packages which end
up having either of PERL5_USE_PACKLIST, BUILDLINK_API_DEPENDS.perl,
or PERL5_PACKLIST defined in their make setup (tested via
"make show-vars VARNAMES=...").
- ok'ed by rillig
ChangeLog:
* important changes in vesrion 1.38 14/12/2007:
- Promote 1.37_01 to stable.
* important changes in version 1.37_01 11/11/2007:
_ Address #30380: directory traversal vulnerability in Archive-Tar
- Add $INSECURE_EXTRACT_MODE which defaults to 0, disallowing
archives to extract files outside of cwd(). This is a backwards
incompatible change from 1.36 and before.
- Add a -I option to ptar to enable insecure extraction if needed
- USER_DESTDIR support added
- new maintainer for the package
- ok'ed by rillig
Changelog:
* important changes in version 1.36 16/9/2007:
- Portability fixes for VMS, as offered by Craig Berry.
Pkgsrc changes:
- none
Changes since version 1.32:
===========================
* important changes in version 1.34 15/8/2007:
- Address #28687: Fwd: Unespected reaction of Archive::Tar
A::T didn't always handle filenames that evaluated to false
(like '0') gracefully. This patch adds a few 'or defined' check
to the A::T codebase and a test to ensure filenames like '0' are
handeled correctly.
- Apply #28407: Unicode and Archive::Tar - documentation patch as
FAQ patch
* important changes in version 1.32 24/5/2007:
- Make Archive::Tar work nicely with perls compiled with
-Dmksymlinks. This also fixes an issue introduced in
1.31 where symlinks weren't dereferenced in all cases.
- Quell warnings when a gid is not resolvable to a group name
* important changes in version 1.31 18/5/2007:
- No longer use the t/setup.t and t/cleanup.t files but just bundle
the binary files; this was done for core integration, but the new
uupacktool.pl script means we dont have to do this anymore
_ Apply core perl Change 30997 by rgs@stcosmo on 2007/04/20 15:03:57
- Address: #27124: Unneeded warning sent when checking for file
inclusion contains_file() will no longer warn to STDERR when a file
is not contained in an archive and $WARN is set to 'true'.
- Address #26492: Dangling symlinks not preserved: Archive::Tar used
to complain about dangling symlinks, unlike standard gnu tar, which
would add them silently. This patch brings A::T's behaviour in line
with gnu tar
- Minor pod fixes
* important changes in version 1.30 8/2/2006:
- applied bleadperl patch: Subject: Change 27416:
Cleanup Archive-Tar temporary test files
- address #17985: INSTALLDIRS needs to be 'perl' for >= perl-5.9.3
- address #18296: Archive::Tar 1.29 PATCH for VMS to fix test case
failure in 99_pod.t
(it's actually a File::Find bug, but this patch works around that)
- address: #18720 ([PATCH] Archive::Tar creates POSIX style tar files
unnecessarily and by default, leading to compatibility problems
particularly with WinZip.)
patch rejected, docpatch added with FAQ and SEE ALSO
- apply performance patch from #20399 to enable the user to
avoid repeated calls to cwd() if desired.
