Up to [cvs.NetBSD.org] / pkgsrc / www / p5-CGI
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.67 / (download) - annotate - [select for diffs], Sun Jan 7 01:41:31 2024 UTC (2 months, 3 weeks ago) by wen
Branch: MAIN
CVS Tags: HEAD
Changes since 1.66: +4 -4
lines
Diff to previous 1.66 (colored) to selected 1.4 (colored)
Update to 4.60 Upstream changes: Changes for version 4.60 - 2023-11-01 TESTING move t/changes.t to xt/ as is now broken by the recent rewrite of Test::CPAN::Changes (GH #260)
Revision 1.66 / (download) - annotate - [select for diffs], Sun Oct 22 07:51:05 2023 UTC (5 months, 1 week ago) by wen
Branch: MAIN
CVS Tags: pkgsrc-2023Q4-base,
pkgsrc-2023Q4
Changes since 1.65: +4 -4
lines
Diff to previous 1.65 (colored) to selected 1.4 (colored)
Update to 4.59 Upstream changes: 4.59 2023-10-02 [ FIX ] - Bring VERSION values inline 4.58 2023-10-02 [ FIX ] - Update cookie expires date format (GH #258 , thanks to robbiebow)
Revision 1.65 / (download) - annotate - [select for diffs], Sun Jun 11 12:37:43 2023 UTC (9 months, 2 weeks ago) by wen
Branch: MAIN
CVS Tags: pkgsrc-2023Q3-base,
pkgsrc-2023Q3,
pkgsrc-2023Q2-base,
pkgsrc-2023Q2
Changes since 1.64: +4 -4
lines
Diff to previous 1.64 (colored) to selected 1.4 (colored)
Update to 4.57 Upstream changes: 4.57 2023-05-01 [ DOCUMENTATION ] - Documentation tweaks around uploadInfo() and hooks (GH #256, thanks to rlauer6) 4.56 2023-03-01 [ TESTING ] - add new cookie field 'Priority' to CGI::Cookie code (GH #253, thanks to Pavel)
Revision 1.64 / (download) - annotate - [select for diffs], Fri Jan 13 12:49:58 2023 UTC (14 months, 2 weeks ago) by wen
Branch: MAIN
CVS Tags: pkgsrc-2023Q1-base,
pkgsrc-2023Q1
Changes since 1.63: +4 -4
lines
Diff to previous 1.63 (colored) to selected 1.4 (colored)
Update to 4.55 Remove unneeded TEST_DEPENDS as per upstream change Upstream changes: 4.55 2023-01-03 [ TESTING ] - remove dependency on Test::Deep (GH #254)
Revision 1.63 / (download) - annotate - [select for diffs], Sun Mar 20 02:20:09 2022 UTC (2 years ago) by wen
Branch: MAIN
CVS Tags: pkgsrc-2022Q4-base,
pkgsrc-2022Q4,
pkgsrc-2022Q3-base,
pkgsrc-2022Q3,
pkgsrc-2022Q2-base,
pkgsrc-2022Q2,
pkgsrc-2022Q1-base,
pkgsrc-2022Q1
Changes since 1.62: +4 -4
lines
Diff to previous 1.62 (colored) to selected 1.4 (colored)
Update to 4.54 Upstream changes: 4.54 2022-02-03 [ FIX ] - fix use of cache when calling ->cookie (GH #252) - thanks to Sergey Panteleev for the PR
Revision 1.62 / (download) - annotate - [select for diffs], Tue Oct 26 11:29:45 2021 UTC (2 years, 5 months ago) by nia
Branch: MAIN
CVS Tags: pkgsrc-2021Q4-base,
pkgsrc-2021Q4
Changes since 1.61: +2 -2
lines
Diff to previous 1.61 (colored) to selected 1.4 (colored)
www: Replace RMD160 checksums with BLAKE2s checksums All checksums have been double-checked against existing RMD160 and SHA512 hashes Not committed (merge conflicts): www/nghttp2/distinfo Unfetchable distfiles (almost certainly fetched conditionally...): ./www/nginx-devel/distinfo array-var-nginx-module-0.05.tar.gz ./www/nginx-devel/distinfo echo-nginx-module-0.62.tar.gz ./www/nginx-devel/distinfo encrypted-session-nginx-module-0.08.tar.gz ./www/nginx-devel/distinfo form-input-nginx-module-0.12.tar.gz ./www/nginx-devel/distinfo headers-more-nginx-module-0.33.tar.gz ./www/nginx-devel/distinfo lua-nginx-module-0.10.19.tar.gz ./www/nginx-devel/distinfo naxsi-1.3.tar.gz ./www/nginx-devel/distinfo nginx-dav-ext-module-3.0.0.tar.gz ./www/nginx-devel/distinfo nginx-rtmp-module-1.2.2.tar.gz ./www/nginx-devel/distinfo nginx_http_push_module-1.2.10.tar.gz ./www/nginx-devel/distinfo ngx_cache_purge-2.5.1.tar.gz ./www/nginx-devel/distinfo ngx_devel_kit-0.3.1.tar.gz ./www/nginx-devel/distinfo ngx_http_geoip2_module-3.3.tar.gz ./www/nginx-devel/distinfo njs-0.5.0.tar.gz ./www/nginx-devel/distinfo set-misc-nginx-module-0.32.tar.gz ./www/nginx/distinfo array-var-nginx-module-0.05.tar.gz ./www/nginx/distinfo echo-nginx-module-0.62.tar.gz ./www/nginx/distinfo encrypted-session-nginx-module-0.08.tar.gz ./www/nginx/distinfo form-input-nginx-module-0.12.tar.gz ./www/nginx/distinfo headers-more-nginx-module-0.33.tar.gz ./www/nginx/distinfo lua-nginx-module-0.10.19.tar.gz ./www/nginx/distinfo naxsi-1.3.tar.gz ./www/nginx/distinfo nginx-dav-ext-module-3.0.0.tar.gz ./www/nginx/distinfo nginx-rtmp-module-1.2.2.tar.gz ./www/nginx/distinfo nginx_http_push_module-1.2.10.tar.gz ./www/nginx/distinfo ngx_cache_purge-2.5.1.tar.gz ./www/nginx/distinfo ngx_devel_kit-0.3.1.tar.gz ./www/nginx/distinfo ngx_http_geoip2_module-3.3.tar.gz ./www/nginx/distinfo njs-0.5.0.tar.gz ./www/nginx/distinfo set-misc-nginx-module-0.32.tar.gz
Revision 1.61 / (download) - annotate - [select for diffs], Thu Oct 7 15:07:28 2021 UTC (2 years, 5 months ago) by nia
Branch: MAIN
Changes since 1.60: +1 -2
lines
Diff to previous 1.60 (colored) to selected 1.4 (colored)
www: Remove SHA1 hashes for distfiles
Revision 1.60 / (download) - annotate - [select for diffs], Wed Aug 11 12:22:40 2021 UTC (2 years, 7 months ago) by wen
Branch: MAIN
CVS Tags: pkgsrc-2021Q3-base,
pkgsrc-2021Q3
Changes since 1.59: +5 -5
lines
Diff to previous 1.59 (colored) to selected 1.4 (colored)
Update to 4.53 Upstream changes: 4.53 2021-06-03 [ FIX ] - fix typo in passing of max-age to CGI::Cookie (GH #247) 4.52 2021-05-04 [ FIX ] - sort hash keys for deterministic behaviour (GH #245, GH #246)
Revision 1.59 / (download) - annotate - [select for diffs], Sun Oct 25 15:14:05 2020 UTC (3 years, 5 months ago) by wen
Branch: MAIN
CVS Tags: pkgsrc-2021Q2-base,
pkgsrc-2021Q2,
pkgsrc-2021Q1-base,
pkgsrc-2021Q1,
pkgsrc-2020Q4-base,
pkgsrc-2020Q4
Changes since 1.58: +5 -5
lines
Diff to previous 1.58 (colored) to selected 1.4 (colored)
Update to 4.51 Upstream changes: 4.51 2020-10-01 [ DOCUMENTATION ] - Document support for SameSite=None cookies in CGI::Cookie (GH #244)
Revision 1.58 / (download) - annotate - [select for diffs], Mon Sep 7 20:34:56 2020 UTC (3 years, 6 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2020Q3-base,
pkgsrc-2020Q3
Changes since 1.57: +5 -5
lines
Diff to previous 1.57 (colored) to selected 1.4 (colored)
p5-CGI: update to 4.50. 4.50 2019-06-22 [ ENHANCEMENT ] - Add APPEND_QUERY_STRING option (GH #243, thanks to stevenh) 4.49 2020-06-08 [ FIX ] - remove deprecation warning as no longer in core (GH #221) 4.48 2020-06-02 [ FIX ] - fix CGI::Cookie->bake() doesn't work with mod_perl redirects (GH #240) - thanks to sherrardb for the PR (GH #241)
Revision 1.57 / (download) - annotate - [select for diffs], Fri May 8 07:12:39 2020 UTC (3 years, 10 months ago) by wen
Branch: MAIN
CVS Tags: pkgsrc-2020Q2-base,
pkgsrc-2020Q2
Changes since 1.56: +5 -5
lines
Diff to previous 1.56 (colored) to selected 1.4 (colored)
Update to 0.47 Upstream changes: 4.47 2020-05-01 [ FIX / TESTING ] - fix typo in variable name (GH #239) 4.46 2020-02-03 [ DOCUMENTATION ] - Document support for SameSite=None cookies (GH #238) 4.45 2019-06-03 [ ENHANCEMENT ] - Add support for SameSite=None cookies (GH #237, thanks to Dur09)
Revision 1.56 / (download) - annotate - [select for diffs], Thu Jul 18 13:51:32 2019 UTC (4 years, 8 months ago) by wen
Branch: MAIN
CVS Tags: pkgsrc-2020Q1-base,
pkgsrc-2020Q1,
pkgsrc-2019Q4-base,
pkgsrc-2019Q4,
pkgsrc-2019Q3-base,
pkgsrc-2019Q3
Changes since 1.55: +5 -5
lines
Diff to previous 1.55 (colored) to selected 1.4 (colored)
Update to 4.44 Upstream changes: 4.44 2019-06-03 [ ENHANCEMENT ] - Replace only use of "base" with "parent" (GH #235)
Revision 1.55 / (download) - annotate - [select for diffs], Wed May 8 02:24:35 2019 UTC (4 years, 10 months ago) by wen
Branch: MAIN
CVS Tags: pkgsrc-2019Q2-base,
pkgsrc-2019Q2
Changes since 1.54: +5 -5
lines
Diff to previous 1.54 (colored) to selected 1.4 (colored)
Update to 4.43 Upstream changes: 4.43 2019-05-01 [ FIX / TESTING ] - support unquoted multipart/form-data name values (GH #234)
Revision 1.54 / (download) - annotate - [select for diffs], Thu Apr 4 06:44:11 2019 UTC (4 years, 11 months ago) by wen
Branch: MAIN
Changes since 1.53: +5 -5
lines
Diff to previous 1.53 (colored) to selected 1.4 (colored)
Update to 4.42 Upstream changes: 4.42 2019-03-26 [ DOCUMENTATION ] - clarify licence also in Makefile.PL (GH #232) 4.41 2019-03-26 [ DOCUMENTATION ] - clarify licence (GH #232)
Revision 1.53 / (download) - annotate - [select for diffs], Tue Aug 21 13:15:41 2018 UTC (5 years, 7 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2019Q1-base,
pkgsrc-2019Q1,
pkgsrc-2018Q4-base,
pkgsrc-2018Q4,
pkgsrc-2018Q3-base,
pkgsrc-2018Q3
Changes since 1.52: +5 -5
lines
Diff to previous 1.52 (colored) to selected 1.4 (colored)
p5-CGI: update to 4.40. 4.40 2018-08-15 [ FIX / TESTING ] - support perls < 5.10.1 in Makefile.PL by being more dynamic (GH #229, GH #230, thanks to Aristotle) 4.39 2018-08-13 [ FIX / TESTING ] - specify CONFIGURE_REQUIRES in Makefile.PL so can use TEST_REQUIRES to build with older perls (GH #228)
Revision 1.52 / (download) - annotate - [select for diffs], Sun Dec 3 08:49:53 2017 UTC (6 years, 3 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2018Q2-base,
pkgsrc-2018Q2,
pkgsrc-2018Q1-base,
pkgsrc-2018Q1,
pkgsrc-2017Q4-base,
pkgsrc-2017Q4
Changes since 1.51: +5 -5
lines
Diff to previous 1.51 (colored) to selected 1.4 (colored)
p5-CGI: update to 4.38. 4.38 2017-12-01 [ TESTING ] - command_line.t: Avoid -I for libs (GH #224, thanks to cpansprout)
Revision 1.51 / (download) - annotate - [select for diffs], Wed Nov 8 21:39:45 2017 UTC (6 years, 4 months ago) by wiz
Branch: MAIN
Changes since 1.50: +5 -5
lines
Diff to previous 1.50 (colored) to selected 1.4 (colored)
p5-CGI: update to 4.37. 4.37 2017-11-01 [ FIX ] - Fix incorrect quoting of ? in ->url (GH #112, GH #222, with thanks to Reuben Thomas)
Revision 1.50 / (download) - annotate - [select for diffs], Wed Apr 19 13:40:50 2017 UTC (6 years, 11 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2017Q3-base,
pkgsrc-2017Q3,
pkgsrc-2017Q2-base,
pkgsrc-2017Q2
Changes since 1.49: +5 -5
lines
Diff to previous 1.49 (colored) to selected 1.4 (colored)
Updated p5-CGI to 4.36. 4.36 2017-03-29 [ ENHANCEMENT ] - Support PATCH HTTP method (thanks to GovtGeek for the... patch) - pass through max_age and samesite to CGI::Cookie->new in the call in CGI->cookie (GH #220) [ FIX ] - skip t/command_line.t on windows as it doesn't work
Revision 1.49 / (download) - annotate - [select for diffs], Tue Oct 18 08:20:57 2016 UTC (7 years, 5 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2017Q1-base,
pkgsrc-2017Q1,
pkgsrc-2016Q4-base,
pkgsrc-2016Q4
Changes since 1.48: +5 -5
lines
Diff to previous 1.48 (colored) to selected 1.4 (colored)
Updated p5-CGI to 4.35. 4.35 2016-10-13 [ FIX ] - revert changes from 4.34 as they broke stuff 4.34 2016-10-13 [ ENHANCEMENT ] - If running from the command line, url_param now picks up parameters given on then command line or on stdin (GH #210) [ DOCUMENTATION ] - documentation for above addition
Revision 1.48 / (download) - annotate - [select for diffs], Sat Sep 17 02:59:19 2016 UTC (7 years, 6 months ago) by mef
Branch: MAIN
CVS Tags: pkgsrc-2016Q3-base,
pkgsrc-2016Q3
Changes since 1.47: +5 -5
lines
Diff to previous 1.47 (colored) to selected 1.4 (colored)
Updated www/p5-CGI to 4.33 --------------------------- 4.33 2016-09-16 [ DOCUMENTATION ] - clarify that ->param will return the first value if there are multiple values (when not called in list context)
Revision 1.47 / (download) - annotate - [select for diffs], Thu Jul 21 12:25:59 2016 UTC (7 years, 8 months ago) by wiz
Branch: MAIN
Changes since 1.46: +5 -5
lines
Diff to previous 1.46 (colored) to selected 1.4 (colored)
Updated p5-CGI to 4.32. 4.32 2016-07-19 [ DOCUMENTATION ] - make perldoc CGI object consistent (GH #205) - clarify reason for absolute URLs (GH #206) [ INTERNALS ] - tweak dependency defs in Makefile.PL (GH #207, GH #208) - (thanks to karenetheridge and kentfredric)
Revision 1.46 / (download) - annotate - [select for diffs], Wed Jun 15 07:38:01 2016 UTC (7 years, 9 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2016Q2-base,
pkgsrc-2016Q2
Changes since 1.45: +5 -5
lines
Diff to previous 1.45 (colored) to selected 1.4 (colored)
Updated p5-CGI to 4.31. 4.31 2016-06-14 [ FEATURES ] - Add SameSite support to Cookie handling (thanks to pangyre) [ INTERNALS ] - The MultipartBuffer package has been renamed to CGI::MultipartBuffer. This has been done in a way to ensure any $MultipartBuffer package variables are still set correctly in CGI::MultipartBuffer. if you are explicitly using MultipartBuffer in a form such as: MultipartBuffer->new your code will break. you should be calling: CGI->new->new_MultipartBuffer( $boundary,$length ); to ensure the correctly package is called. if you are extending the MultipartBuffer package though use of ISA or base (or parent) then you will need to update your code to use CGI::MultipartBuffer - fake using strict and warnings to appease CPANTS Kwalitee - require File::Temp v0.17+ to get seekable file handles (GH #204)
Revision 1.45 / (download) - annotate - [select for diffs], Sun Jun 12 08:00:38 2016 UTC (7 years, 9 months ago) by wiz
Branch: MAIN
Changes since 1.44: +5 -5
lines
Diff to previous 1.44 (colored) to selected 1.4 (colored)
Updated p5-CGI to 4.30. 4.30 2016-06-08 [ FEATURES ] - Add SameSite support to Cookie handling (thanks to pangyre) [ INTERNALS ] - The MultipartBuffer package has been renamed to CGI::MultipartBuffer. This has been done in a way to ensure any $MultipartBuffer package variables are still set correctly in CGI::MultipartBuffer. if you are explicitly using MultipartBuffer in a form such as: MultipartBuffer->new your code will break. you should be calling: CGI->new->new_MultipartBuffer( $boundary,$length ); to ensure the correctly package is called. if you are extending the MultipartBuffer package though use of ISA or base (or parent) then you will need to update your code to use CGI::MultipartBuffer - fake using strict and warnings to appease CPANTS Kwalitee
Revision 1.44 / (download) - annotate - [select for diffs], Fri Apr 8 14:44:22 2016 UTC (7 years, 11 months ago) by wiz
Branch: MAIN
Changes since 1.43: +5 -5
lines
Diff to previous 1.43 (colored) to selected 1.4 (colored)
Update p5-CGI to 4.28: 4.28 2016-03-14 [ RELEASE NOTES ] - please see v4.21 Changes for any potentially impacting changes [ SPEC / BUG FIXES ] - undef %QUERY_PARAM in initialize_globals to clean mod_perl env [ TESTING ] - improve test coverage on request types (GH #199, GH #200) - improve test coverage on CGI::Carp
Revision 1.43 / (download) - annotate - [select for diffs], Tue Mar 8 15:05:04 2016 UTC (8 years ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2016Q1-base,
pkgsrc-2016Q1
Changes since 1.42: +5 -5
lines
Diff to previous 1.42 (colored) to selected 1.4 (colored)
Update p5-CGI to 4.27. 4.27 2016-03-02 [ RELEASE NOTES ] - please see v4.21 Changes for any potentially impacting changes [ INTERNALS ] - fix a couple of warnings in test harness - add taint flag to example file_upload - fix a warnings in STORE subroutine
Revision 1.42 / (download) - annotate - [select for diffs], Sat Feb 6 23:00:10 2016 UTC (8 years, 1 month ago) by mef
Branch: MAIN
Changes since 1.41: +5 -5
lines
Diff to previous 1.41 (colored) to selected 1.4 (colored)
Update to 4.25 -------------- 4.26 2016-02-04 [ RELEASE NOTES ] - please see v4.21 Changes for any potentially impacting changes [ SPEC / BUG FIXES ] - sort HTML attributes by default (GH #106, GH #196) [ DOCUMENTATION ] - clarifications about HTML function non removal
Revision 1.41 / (download) - annotate - [select for diffs], Sun Dec 27 22:39:19 2015 UTC (8 years, 3 months ago) by wiz
Branch: MAIN
Changes since 1.40: +5 -5
lines
Diff to previous 1.40 (colored) to selected 1.4 (colored)
Update p5-CGI to 4.25. 4.25 2015-12-17 [ DOCUMENTATION ] - fix link to CONTRIBUTING file (thanks to Manwar for the fix) - clarify that "soft" deprecation means that the HTML functions are deprecated but will not raise any deprecation warnings [ SPEC / BUG FIXES ] - make the list context warning only happen once per process (or thread) to prevent excessive log noise in long running or in persistent processes (thanks to @dadamail for the suggestion) 4.23 2015-12-17 [ DOCUMENTATION ] - add LICENSE file and LICENSE info to Makefile.PL
Revision 1.40 / (download) - annotate - [select for diffs], Wed Oct 21 08:21:24 2015 UTC (8 years, 5 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2015Q4-base,
pkgsrc-2015Q4
Changes since 1.39: +5 -4
lines
Diff to previous 1.39 (colored) to selected 1.4 (colored)
Update p5-CGI to 4.22: 4.22 2015-10-16 [ RELEASE NOTES ] - Documentation fixes only - please see v4.21 Changes for any potentially impacting changes [ DOCUMENTATION ] - fix typos in CONTRIBUTING file - links to docs, stackoverflow and perlmonks - clarify deprecation policy on HTML functions (GH #188) - mention HTML::Tiny in CGI::HTML::Functions (thanks to osfameron for the suggestion)
Revision 1.39 / (download) - annotate - [select for diffs], Mon Jun 29 11:13:09 2015 UTC (8 years, 9 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2015Q3-base,
pkgsrc-2015Q3
Changes since 1.38: +4 -4
lines
Diff to previous 1.38 (colored) to selected 1.4 (colored)
Update to 4.21: 4.21 2015-06-16 - Fix regression of tmpFileName when calling with a plain string (GH #178, thanks to Simon McVittie for the report and fix)
Revision 1.38 / (download) - annotate - [select for diffs], Sun May 31 12:54:18 2015 UTC (8 years, 10 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2015Q2-base,
pkgsrc-2015Q2
Changes since 1.37: +4 -4
lines
Diff to previous 1.37 (colored) to selected 1.4 (colored)
Update to 4.20: 4.20 2015-05-29 [ RELEASE NOTES ] - CGI.pm is now considered "done". See also "mature" and "legacy" Features requests and none critical issues will be outright rejected. The module is now in maintenance mode for critical issues only. - This release removes the AUTOLOAD and compile optimisations from CGI.pm that were introduced into CGI.pm twenty (20) years ago as a response to its large size, which meant there was a significant compile time penalty. - This optimisation is no longer relevant and makes the code difficult to deal with as well as making test coverage metrics incorrect. Benchmarks show that advantages of AUTOLOAD / lazy loading / deferred compile are less than 0.05s, which will be dwarfed by just about any meaningful code in a cgi script. If this is an issue for you then you should look at running CGI.pm in a persistent environment (FCGI, etc) - To offset some of the time added by removing the AUTOLOAD functionality the dependencies have been made runtime rather than compile time. The POD has also been split into its own file. CGI.pm now contains around 4000 lines of code, which compared to some modules on CPAN isn't really that much - This essentially deprecates the -compile pragma and ->compile method. The -compile pragma will no longer do anything, whereas the ->compile method will raise a deprecation warning. More importantly this also REMOVES the -any pragma because as per the documentation this pragma needed to be "used with care or not at all" and allowing arbitrary HTML tags is almost certainly a bad idea. If you are using the -any pragma and using arbitrary tags (or have typo's in your code) your code will *BREAK* - Although this release should be back compatible (with the exception of any code using the -any pragma) you are encouraged to test it throughly as if you are doing anything out of the ordinary with CGI.pm (i.e. have bugs that may have been masked by the AUTOLOAD feature) you may see some issues. - References: GH #162, GH #137, GH #164 [ SPEC / BUG FIXES ] - make the list context warning in param show the filename rather than the package so we have more information on exactly where the warning has been raised from (GH #171) - correct self_url when PATH_INFO and SCRIPT_NAME are the same but we are not running under IIS (GH #176) - Add the multi_param method to :cgi export (thanks to xblitz for the patch and tests. GH #167) - Fix warning for lack of HTTP_USER_AGENT in CGI::Carp (GH #168) - Fix imports when called from CGI::Fast, restores the import of CGI functions into the callers namespace for users of CGI::Fast (GH leejo/cgi-fast#11 and GH leejo/cgi-fast#12) [ FEATURES ] - CGI::Carp now has $CGI::Carp::FULL_PATH for displaying the full path to the offending script in error messages - CGI now has env_query_string() for getting the value of QUERY_STRING from the environment and not that fiddled with by CGI.pm (which is what query_string() does) (GH #161) - CGI::ENCODE_ENTITIES var added to control which chracters are encoded by the call to the HTML::Entities module - defaults to &<>"' (GH #157 - the \x8b and \x9b chars have been removed from this list as we are concerned more about unicode compat these days than old browser support.) [ DOCUMENTATION ] - Fix some typos (GH #173, GH #174) - All *documentation* for HTML functionality in CGI has been moved into its own namespace: CGI::HTML::Functions - although the functionality continues to exist within CGI.pm so there are no code changes required (GH #142) - Add missing documentation for env variable fetching routines (GH #163) [ TESTING ] - Increase test coverage (GH #3) [ INTERNALS ] - Cwd made a TEST_REQUIRES rather than a BUILD_REQUIRES in Makefile.PL (GH #170) - AutoloadClass variables have been removed as AUTOLOAD was removed in v4.14 so these are no longer necessary (GH #172 thanks to alexmv) - Remove dependency on constant - internal DEBUG, XHTML_DTD and EBCDIC constants changes to $_DEBUG, $_XHTML_DTD, and $_EBCDIC
Revision 1.37 / (download) - annotate - [select for diffs], Wed Apr 22 06:33:25 2015 UTC (8 years, 11 months ago) by wiz
Branch: MAIN
Changes since 1.36: +4 -4
lines
Diff to previous 1.36 (colored) to selected 1.4 (colored)
Update to 4.15. Read the changelog below! 4.15 2015-04-20 [ RELEASE NOTES ] - This release removes the AUTOLOAD and compile optimisations from CGI.pm that were introduced into CGI.pm twenty (20) years ago as a response to its large size, which meant there was a significant compile time penalty. - This optimisation is no longer relevant and makes the code difficult to deal with as well as making test coverage metrics incorrect. Benchmarks show that advantages of AUTOLOAD / lazy loading / deferred compile are less than 0.05s, which will be dwarfed by just about any meaningful code in a cgi script. If this is an issue for you then you should look at running CGI.pm in a persistent environment (FCGI, etc) - To offset some of the time added by removing the AUTOLOAD functionality the dependencies have been made runtime rather than compile time. The POD has also been split into its own file. CGI.pm now contains around 4000 lines of code, which compared to some modules on CPAN isn't really that much - This essentially deprecates the -compile pragma and ->compile method. The -compile pragma will no longer do anything, whereas the ->compile method will raise a deprecation warning. More importantly this also REMOVES the -any pragma because as per the documentation this pragma needed to be "used with care or not at all" and allowing arbitrary HTML tags is almost certainly a bad idea. If you are using the -any pragma and using arbitrary tags (or have typo's in your code) your code will *BREAK* - Although this release should be back compatible (with the exception of any code using the -any pragma) you are encouraged to test it throughly as if you are doing anything out of the ordinary with CGI.pm (i.e. have bugs that may have been masked by the AUTOLOAD feature) you may see some issues. - References: GH #162, GH #137, GH #164 [ SPEC / BUG FIXES ] - make the list context warning in param show the filename rather than the package so we have more information on exactly where the warning has been raised from (GH #171) - correct self_url when PATH_INFO and SCRIPT_NAME are the same but we are not running under IIS (GH #176) - Add the multi_param method to :cgi export (thanks to xblitz for the patch and tests. GH #167) - Fix warning for lack of HTTP_USER_AGENT in CGI::Carp (GH #168) - Fix imports when called from CGI::Fast, restores the import of CGI functions into the callers namespace for users of CGI::Fast (GH leejo/cgi-fast#11 and GH leejo/cgi-fast#12) [ FEATURES ] - CGI::Carp now has $CGI::Carp::FULL_PATH for displaying the full path to the offending script in error messages - CGI now has env_query_string() for getting the value of QUERY_STRING from the environment and not that fiddled with by CGI.pm (which is what query_string() does) (GH #161) - CGI::ENCODE_ENTITIES var added to control which chracters are encoded by the call to the HTML::Entities module - defaults to &<>"\x8b\x9b' (GH #157) [ DOCUMENTATION ] - Fix some typos (GH #173, GH #174) - All *documentation* for HTML functionality in CGI has been moved into its own namespace: CGI::HTML::Functions - although the functionality continues to exist within CGI.pm so there are no code changes required (GH #142) - Add missing documentation for env variable fetching routines (GH #163) [ TESTING ] - Increase test coverage (GH #3) [ INTERNALS ] - Cwd made a TEST_REQUIRES rather than a BUILD_REQUIRES in Makefile.PL (GH #170) - AutoloadClass variables have been removed as AUTOLOAD was removed in v4.14 so these are no longer necessary (GH #172 thanks to alexmv) - Remove dependency on constant - internal DEBUG, XHTML_DTD and EBCDIC constants changes to $_DEBUG, $_XHTML_DTD, and $_EBCDIC
Revision 1.36 / (download) - annotate - [select for diffs], Thu Apr 2 22:47:24 2015 UTC (8 years, 11 months ago) by wiz
Branch: MAIN
Changes since 1.35: +4 -4
lines
Diff to previous 1.35 (colored) to selected 1.4 (colored)
Update to 4.14: 4.14 2015-04-01 [ RELEASE NOTES ] - This release removes the AUTOLOAD and compile optimisations from CGI.pm that were introduced into CGI.pm twenty (20) years ago as a response to its large size, which meant there was a significant compile time penalty. - This optimisation is no longer relevant and makes the code difficult to deal with as well as making test coverage metrics incorrect. Benchmarks show that advantages of AUTOLOAD / lazy loading / deferred compile are less than 0.05s, which will be dwarfed by just about any meaningful code in a cgi script. If this is an issue for you then you should look at running CGI.pm in a persistent environment (FCGI, etc) - To offset some of the time added by removing the AUTOLOAD functionality the dependencies have been made runtime rather than compile time. The POD has also been split into its own file. CGI.pm now contains around 4000 lines of code, which compared to some modules on CPAN isn't really that much - This essentially deprecates the -compile pragma and ->compile method. The -compile pragma will no longer do anything, whereas the ->compile method will raise a deprecation warning. More importantly this also REMOVES the -any pragma because as per the documentation this pragma needed to be "used with care or not at all" and allowing arbitrary HTML tags is almost certainly a bad idea. If you are using the -any pragma and using arbitrary tags (or have typo's in your code) your code will *BREAK* - Although this release should be back compatible (with the exception of any code using the -any pragma) you are encouraged to test it throughly as if you are doing anything out of the ordinary with CGI.pm (i.e. have bugs that may have been masked by the AUTOLOAD feature) you may see some issues. - References: GH #162, GH #137, GH #164 [ FEATURES ] - CGI::Carp now has $CGI::Carp::FULL_PATH for displaying the full path to the offending script in error messages - CGI now has env_query_string() for getting the value of QUERY_STRING from the environment and not that fiddled with by CGI.pm (which is what query_string() does) (GH #161) - CGI::ENCODE_ENTITIES var added to control which chracters are encoded by the call to the HTML::Entities module - defaults to &<>"\x8b\x9b' (GH #157) [ SPEC / BUG FIXES ] - Add the multi_param method to :cgi export (thanks to xblitz for the patch and tests. GH #167) - Fix warning for lack of HTTP_USER_AGENT in CGI::Carp (GH #168) - Fix imports when called from CGI::Fast, restores the import of CGI functions into the callers namespace for users of CGI::Fast (GH leejo/cgi-fast#11 and GH leejo/cgi-fast#12) [ INTERNALS ] - Remove dependency on constant - internal DEBUG, XHTML_DTD and EBCDIC constants changes to $_DEBUG, $_XHTML_DTD, and $_EBCDIC [ DOCUMENTATION ] - Add missing documentation for env variable fetching routines (GH #163)
Revision 1.35 / (download) - annotate - [select for diffs], Tue Dec 30 13:01:25 2014 UTC (9 years, 3 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2015Q1-base,
pkgsrc-2015Q1
Changes since 1.34: +4 -4
lines
Diff to previous 1.34 (colored) to selected 1.4 (colored)
Update to 4.13: 4.13 2014-12-18 [ RELEASE NOTES ] - CGI::Pretty is now DEPRECATED and will be removed in a future release. Please see GH #162 (https://github.com/leejo/CGI.pm/issues/162) for more information and discussion (also GH #140 for HTML function deprecation discussion: https://github.com/leejo/CGI.pm/issues/140) [ TESTING ] - fix t\rt-84767.t for failures on Win32 platforms related to file paths
Revision 1.34 / (download) - annotate - [select for diffs], Wed Dec 3 14:56:43 2014 UTC (9 years, 3 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2014Q4-base,
pkgsrc-2014Q4
Changes since 1.33: +4 -4
lines
Diff to previous 1.33 (colored) to selected 1.4 (colored)
Update to 4.11: 4.11 2014-12-02 [ SPEC / BUG FIXES ] - more hash key ordering bugs fixed in HTML attribute output (GH #158, thanks to Marcus Meissner for the patch and test case) [ REFACTORING ] - escapeHTML (and unescapeHTML) have been refactored to use the functions exported by the HTML::Entities module (GH #157) - change BUILD_REQUIRES to TEST_REQUIRES in Makefile.PL as these are test dependencies not build dependencies (GH #159) [ DOCUMENTATION ] - replace any remaining uses of indirect object notation (new Object) with the safer Object->new syntax (GH #156)
Revision 1.33 / (download) - annotate - [select for diffs], Sun Nov 30 13:16:58 2014 UTC (9 years, 4 months ago) by wiz
Branch: MAIN
Changes since 1.32: +4 -4
lines
Diff to previous 1.32 (colored) to selected 1.4 (colored)
Update to 4.10: 4.10 2014-11-27 [ SPEC / BUG FIXES ] - favour -content-type arg in header if -type and -charset options are also passed in (GH #155, thanks to kaoru for the test case). this change also sorts the hash keys in the rearrange method in CGI::Util meaning the order of the arrangement will always be the same for params that have multiple aliases. really you shouldn't be passing in multiple aliases, but this will make it consistent should you do that [ DOCUMENTATION ] - fix some typos
Revision 1.32 / (download) - annotate - [select for diffs], Sun Oct 26 11:56:05 2014 UTC (9 years, 5 months ago) by wiz
Branch: MAIN
Changes since 1.31: +4 -4
lines
Diff to previous 1.31 (colored) to selected 1.4 (colored)
Update to 4.09: 4.09 2014-10-21 [ RELEASE NOTES ] - with this release the large backlog of issues against CGI.pm has been cleared. All fixes have been made in the versions 4.00 and above so if you are upgrading from 3.* you should thoroughly test your code against recent versions of CGI.pm - an effort has been made to retain back compatibility against previous versions of CGI.pm for any fixes made, however some changes related to the handling of temporary files may have consequences for your code - please refer to the RELEASE NOTES for version 4.00 and above for all recent changes and file an issue on github if there has been a regression. - please do *NOT* file issues regarding HTML generating functions, these are no longer being maintained (see perldoc for rational) [ SPEC / BUG FIXES ] - tweak url to DTRT when the web server is IIS (RT #89827 / GH #152) - fix temporary file handling when dealing with multiple files in MIME uploads (GH #154, thanks to GeJ for the test case) 4.08 2014-10-18 [ DOCUMENTATION ] - note that calling headers without a -charset may lead to a nonsensical charset being added to certain content types due to the default and the workaround - remove documentation stating that calls to escapeHTML with a changed charset force numeric encoding of all characters, because that does not happen - documentation tweaks for calling param() in list context and the addition of multi_param() [ SPEC / BUG FIXES ] - don't sub out PATH_INFO in url if PATH_INFO is the same as SCRIPT_NAME (RT #89827) - add multi_param() method to allow calling of param() in list context without having to disable the $LIST_CONTEXT_WARN flag (see RELEASE NOTES for version 4.05 on why calling param() in list context could be a bad thing) 4.07 2014-10-12 [ RELEASE NOTES ] - please see changes for v4.05 [ TESTING ] - typo and POD fixes, add test to check POD and compiles
Revision 1.31 / (download) - annotate - [select for diffs], Sun Oct 12 14:39:49 2014 UTC (9 years, 5 months ago) by wiz
Branch: MAIN
Changes since 1.30: +4 -4
lines
Diff to previous 1.30 (colored) to selected 1.4 (colored)
Update to 4.06: 4.06 2014-10-10 - make warning on list context call of ->param more lenient and don't warn if called with no arguments 4.05 2014-10-08 [ RELEASE NOTES ] - this release includes *significant* refactoring of temporary file handling in CGI.pm. See "Changes in temporary file handling" in perldoc - this release adds a warning for when the param method is called in list context, see the Warning in the perldoc for the section "Fetching the value or values of a single named parameter" for why this has been added and how to disable this warning [ DOCUMENTATION ] - change AUTHOR INFORMATION to LICENSE to please Kwalitee [ TESTING ] - t/arbitrary_handles.t to check need for patch in RT #54055, it turns out there is no need - the first argument to CGI->new can be an arbitrary handle - add test case for incorrect unescaping of redirect headers (RT #61120) - add tests for the handle method (RT #85074, thanks to TONYC@cpan.org) [ SPEC / BUG FIXES ] - don't set binmode on STDOUT/STDERR/STDIN if a none standard layer is already set on them on none UNIX platforms (RT #57524) - make XForms:Model data accesible through POSTDATA/PUTDATA param (RT #75628) - prevent corruption of POSTDATA/PUTDATA when -utf8 flag is used and use tempfiles to handle this data (RT #79102, thanks anonymous) - unescape request URI *after* having removed the query string to prevent removal of ? chars that are part of the original URI (and were encoded) (RT #83265) - fix q( to qq( in CGI::Carp so $@ is correct interpolated (RT #83360) - don't call ->query_string in url unless -query is passed (RT #87790) (optimisation and fits the current documented behaviour)
Revision 1.30 / (download) - annotate - [select for diffs], Wed Oct 1 11:05:27 2014 UTC (9 years, 5 months ago) by wiz
Branch: MAIN
Changes since 1.29: +4 -4
lines
Diff to previous 1.29 (colored) to selected 1.4 (colored)
Update to 4.04, add a build (test?) dependency. 4.04 2014-09-04 [ RELEASE NOTES ] - this release removes some long deprecated modules/functions and includes refactoring to the temporary file handling in CGI.pm. if you are doing anything out of the ordinary with regards to temp files you should test your code before deploying this update as temp files may no longer be stored in previously used locations [ REMOVED / DEPRECATIONS ] - startform and endform methods removed (previously deprecated, you should be using the start_form and end_form methods) - both CGI::Apache and CGI::Switch have been removed as these modules 1) have been deprecated for *years*, and 2) do nothing whatsoever [ SPEC / BUG FIXES ] - handle multiple values in X-Forwarded-Host header, we follow the logic in most other frameworks and take the last value from the list (RT #54487) - refactor CGITempFile::find_tempdir to use File::Spec->tmpdir (related: RT #71799) - fix warnings when QUERY_STRING has empty key=value pairs (RT #54511) - pad custom 500 status response messages to > 512 for MSIE (RT #81946) - make Vars tied hash delete method return the value deleted from the hash making it act like perl's delete (RT #51020) [ TESTING ] - add .travis.yml (https://travis-ci.org) - test case for RT #53966 - disallow filenames with ~ char - test case for RT #55166 - calling Vars to get the filename does not return a filehandle, so this cannot be used in the call to uploadinfo, also update documentation for the uploadInfo to show that ->Vars should not be used to get the filename for this method - fix t/url.t to pass on Win32 platforms that have the SCRIPT_NAME env variable set (RT #89992) - add procedural call tests for upload and uploadInfo to confirm these work as should (RT #91136) [ DOCUMENTATION ] - tweak perldoc for -utf8 option (RT #54341, thanks to Helmut Richter) - explain the HTML generation functions should no longer be used and that they may be deprecated in a future release 4.03 2014-07-02 [ REMOVED / DEPRECATIONS ] - the -multiple option to popup_menu is now IGNORED as this did not function correctly. If you require a menu with multiple selections use the scrolling_list method. (RT #30057) [ SPEC / BUG FIXES ] - support redirects in mod_perl2, or fall back to using env variable for up to 5 redirects, when getting the query string (RT #36312) - CGI::Cookie now correctly supports the -max-age argument, previously if this was passed the value of the -expires argument would be used meaning there was no way to supply *only* this argument (RT #50576) - make :all actually import all methods, except for :cgi-lib, and add :ssl to the :standard import (RT #70337) [ DOCUMENTATION ] - clarify documentation regarding query_string method (RT #48370) - links fixed in some perldoc (Thanks to Michiel Beijen) [ TESTING ] - add t/changes.t for testing this Changes file - test case for RT #31107 confirming multipart parsing is to spec - improve t/rt-52469.t by adding a timeout check 4.02 2014-06-09 [ NEW FEATURES ] - CGI::Carp learns noTimestamp / $CGI::Carp::NO_TIMESTAMP to prevent timestamp in messages (RT #82364, EDAVIS@cpan.org) - multipart_init and multipart_start learn -charset option (RT #22737) [ SPEC / BUG FIXES ] - Support multiple cookies when passing an ARRAY ref with -set-cookie (RT #15065, JWILLIAMS@cpan.org) [ DOCUMENTATION ] - Made licencing information consistent and remove duplicate comments about licence details, corrected location to report bugs (RT #38285)
Revision 1.29 / (download) - annotate - [select for diffs], Sat May 31 12:11:06 2014 UTC (9 years, 10 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2014Q3-base,
pkgsrc-2014Q3,
pkgsrc-2014Q2-base,
pkgsrc-2014Q2
Changes since 1.28: +4 -4
lines
Diff to previous 1.28 (colored) to selected 1.4 (colored)
Update to 4.01: Version 4.01 May 27, 2014 [DOCUMENTATION] - CGI.pm hasn't been removed from core *just* yet, but will be soon: http://perl5.git.perl.org/perl.git/commitdiff/e9fa5a80 Version 4.00 May 22, 2014 [INTERNALS] - CGI::Fast split out into its own distribution, related files and tests removed - developer test added for building with perlbrew [DOCUMENTATION] - Update perldoc to explain that CGI.pm has been removed from perl core - Make =head2 perldoc less shouty (RT #91140) - Tickets migrated from RT to github issues (both CGI and CGI.pm distributions) - Repointing bugtracker at newly forked github repo and note that Lee Johnson is the current maintainer. - Bump version to 4.00 for clear boundary of above changes Version 3.65 Feb 11, 2014 [INTERNALS] - Update Makefile to refine where CGI.pm gets installed (Thanks to bingo, rjbs: https://github.com/markstos/CGI.pm/pull/30) Version 3.64 Nov 23, 2013 [BUG FIXES] - Avoid warning about "undefined variable in user_agent in some cases (RT#72882) [INTERNALS] - Avoiding warning about "unitialized value" in when calling user_agent() in some cases. (RT#72882, perl@max-maurer.de) - Update minimum required version in Makefile.PL to 5.8.1. It had already been updated to 5.8.1 in the CGI.pm module in 3.53. - Fix POD errors reported by newer pod2man (Thanks to jmdh) - Typo fixes, (dsteinbrunner). - use deprecate.pm on perls 5.19.0 and later. (rjbs). [DOCUMENTATION] - Update CGI::Cookie docs to reflect that HttpOnly is widely supported now.
Revision 1.28 / (download) - annotate - [select for diffs], Wed Jul 10 02:54:04 2013 UTC (10 years, 8 months ago) by schmonz
Branch: MAIN
CVS Tags: pkgsrc-2014Q1-base,
pkgsrc-2014Q1,
pkgsrc-2013Q4-base,
pkgsrc-2013Q4,
pkgsrc-2013Q3-base,
pkgsrc-2013Q3
Changes since 1.27: +4 -4
lines
Diff to previous 1.27 (colored) to selected 1.4 (colored)
Update to 3.63. From the changelog: [SECURITY] - CR escaping for Set-Cookie and P3P headers was improved. There was potential for newline injection in these headers. (Thanks to anazawa, https://github.com/markstos/CGI.pm/pull/23) [INTERNALS] - Changed how the deprecated endform function was defined for compatibilty with the development version of Perl. - Fix failures in t/tmpdir.t when run as root https://github.com/markstos/CGI.pm/issues/22, RT#80659) - Made it possible to force a sorted order for things like hash attributes so that tests are not dependent on a particular hash ordering. This will be required in modern perls which will change the ordering per process. (Yves, RT#80659) - formatting of CGI::Carp documentation was improved. Thanks to benkasminbullock. - un-TODO some tests in t/tmpdir.t that were passing in most cases. More on this: https://github.com/markstos/CGI.pm/issues/19# https://github.com/markstos/CGI.pm/commit/cc73dc9807b0fabb56b3cdf1a9726588b2eda0f7
Revision 1.27 / (download) - annotate - [select for diffs], Tue Sep 11 07:43:53 2012 UTC (11 years, 6 months ago) by sno
Branch: MAIN
CVS Tags: pkgsrc-2013Q2-base,
pkgsrc-2013Q2,
pkgsrc-2013Q1-base,
pkgsrc-2013Q1,
pkgsrc-2012Q4-base,
pkgsrc-2012Q4,
pkgsrc-2012Q3-base,
pkgsrc-2012Q3
Changes since 1.26: +4 -4
lines
Diff to previous 1.26 (colored) to selected 1.4 (colored)
Updating package for CPAN module CGI(.pm) in www/p5-CGI from 3.58 to 3.60. upstream changes: Version 3.60 Aug 15th, 2012 [BUG FIXES] - In some caes, When unescapeHTML() hit something it didn't recognize with an ampersand and and semicolon, it would throw away the semicolon and ampersand. It now does a better job. of preserving content it doesn't recognize. Thanks to CEBJYRE@cpan.org (RT#75595) - Remove trailing newline after <form> tag inserted by startform and start_form. It can cause rendering problems in some cases. Thanks to SJOHNSTON@cpan.org (RT#67719) - Workaround "Insecure Dependency" warning generated by some versions of Perl (RT#53733). Thanks to degatcpan@ntlworld.com, klchu@lbl.gov and Anonymous Monk [DOCUMENTATION] - Clarify that when -status is used, the human-readable phase should be included, per RFC 2616. Thanks to SREZIC@cpan.org (RT#76691). [INTERNALS] - More tests for header(), thanks to Ryo Anazawa. - t/url.t has been fixed on VMS. Thanks to cberry@cpan.org (RT#72380) - MANIFEST patched so that t/multipart_init.t is included again. Thanks to shay@cpan.org (RT#76189) Version 3.59 Dec 29th, 2011 [BUG FIXES] - We no longer read from STDIN when the Content-Length is not set, preventing requests with no Content-Length from freezing in some cases. This is consistent with the CGI RFC 3875, and is also consistent with CGI::Simple. However, the old behavior may have been expected by some command-line uses of CGI.pm. Thanks to Philip Potter and Yanick Champoux. See RT#52469 for details: https://rt.cpan.org/Public/Bug/Display.html?id=52469 [INTERNALS] - remove tmpdirs more aggressively. Thanks to rjbs (RT#73288) - use Text::ParseWords instead of ancient shellwords.pl. Thanks to AlexBio. - remove use of define(@arr). Thanks to rjbs. - spelling fixes. Thanks to Gregor Herrmann and Alessandro Ghedini. - fix test count and warning in t/fast.t. Thanks to Yanick.
Revision 1.26 / (download) - annotate - [select for diffs], Tue Nov 22 03:38:25 2011 UTC (12 years, 4 months ago) by hiramatsu
Branch: MAIN
CVS Tags: pkgsrc-2012Q2-base,
pkgsrc-2012Q2,
pkgsrc-2012Q1-base,
pkgsrc-2012Q1,
pkgsrc-2011Q4-base,
pkgsrc-2011Q4
Changes since 1.25: +4 -4
lines
Diff to previous 1.25 (colored) to selected 1.4 (colored)
Update p5-CGI to 3.58. Changes from previous: Version 3.58 Nov 11th, 2011 [DOCUMENTATION] - Clarify that using query_string() only has defined behavior when using the GET method. (RT#60813) Version 3.57 Nov 9th, 2011 [INTERNALS] - test failure in t/fast.t introduced in 3.56 is fixed. (Thanks to zefram and chansen). - Test::More requirement has been bumped to 0.98 Version 3.56 Nov 8th, 2011 [SECURITY] Use public and documented FCGI.pm API in CGI::Fast CGI::Fast was using an FCGI API that was deprecated and removed from documentation more than ten years ago. Usage of this deprecated API with FCGI >= 0.70 or FCGI <= 0.73 introduces a security issue. <https://rt.cpan.org/Public/Bug/Display.html?id=68380> <http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-2766> (Thanks to chansen) [INTERNALS] - tmp files are now cleaned up on VMS ( RT#69210, thanks to cberry@cpan.org ) - Fixed test failure: done_testing() added to url.t (Thanks to Ryan Jendoubi) - Clarify preferred bug submission location in docs, and note that Mark Stosberg is the current maintainer. Version 3.55 June 3rd, 2011 [THINGS THAT MAY BREAK YOUR CODE] url() was fixed to return "PATH_INFO" when it is explicitly requested with either the path=>1 or path_info=>1 flag. If your code is running under mod_rewrite (or compatible) and you are calling self_url() or you are calling url() and passing path_info=>1, These methods will actually be returning PATH_INFO now, as you have explicitly requested, or has self_url() has requested on your behalf. The PATH_INFO has been omitted in such URLs since the issue was introduced in the 3.12 release in December, 2005. This bug is so old your application may have come to depend on it or workaround it. Check for application before upgrading to this release. Examples of affected method calls: $q->url(-absolute => 1, -query => 1, -path_info => 1 ) $q->url(-path=>1) $q->url(-full=>1,-path=>1) $q->url(-rewrite=>1,-path=>1) $q->self_url();
Revision 1.25 / (download) - annotate - [select for diffs], Wed May 25 20:13:59 2011 UTC (12 years, 10 months ago) by gls
Branch: MAIN
CVS Tags: pkgsrc-2011Q3-base,
pkgsrc-2011Q3,
pkgsrc-2011Q2-base,
pkgsrc-2011Q2
Changes since 1.24: +4 -4
lines
Diff to previous 1.24 (colored) to selected 1.4 (colored)
Update www/p5-CGI to 3.54 Upstream changes: Version 3.54, Apr 28, 2011 No code changes [INTERNALS] - Address test failures in t/tmpdir.t, thanks to Niko Tyni. Some tests here are failing on some platforms and have been marked as TODO. Version 3.53, Apr 25, 2011 [NEW FEATURES] - The DELETE HTTP verb is now supported. (RT#52614, James Robson, Eduardo Ari#o de la Rubia) [INTERNALS] - Correct t/tmpdir.t MANIFEST entry. (RT#64949) - Update minimum required Perl version to be Perl 5.8.1, which has been out since 2003. This allows us to drop some hacks and exceptions (Mark Stosberg) Version 3.52, Jan 24, 2011 [DOCUMENTATION] - The documentation for multi-line header handling was been updated to reflect the changes in 3.51. (Mark Stosberg, ntyni@iki.fi) [INTERNALS] - Add missing t/tmpfile.t file. (RT#64949) - Fix warning in t/cookie.t (RT#64570, Chris Williams, Rainer Tammer, Mark Stosberg) - Fixed logic bug in t/multipart_init.t (RT#64261, Niko Tyni) Version 3.51, Jan 5, 2011 [NEW FEATURES] - A new option to set $CGI::Carp::TO_BROWSER = 0, allows you to explicitly exclude a particular scope from triggering printing to the browser when fatatlsToBrowser is set. (RT#62783, Thanks to papowell) - The <script> tag now supports the "charset" attribute. (RT#62907, Thanks to Fabrice Metge) - In CGI::Cookie, "Max-Age" is now supported for better spec compliance. (Mark Stosberg) [BUG FIXES] - Setting charset() now works for all content types, not just "text/*". (RT#57945, Thanks to Yanick and Gerv.) - support for user temporary directories ($HOME/tmp) was commented out in 2.61 but the documentation wasn't updated (Peter Gervai, Niko Tyni) - setting $CGITempFile::TMPDIRECTORY before loading CGI.pm has been working but undocumented since 3.12 (which listed it in Changes as $CGI::TMPDIRECTORY) (Peter Gervai, Niko Tyni) - unfortunately the previous change broke the runtime check for looking for a new temporary directory if the current one suddenly became unwritable (Peter Gervai, Niko Tyni) - A bug was fixed in CGI::Carp triggered by certain death cases in the BEGIN phase of parent classes. (RT#57224, Thanks to UNERA, Yanick Champoux, Mark Stosberg) - CGI::Cookie->new() now follows the documentation and returns undef if the -name and -value args aren't provided. This new behavior is also consistent with the docs and code of CGI::Simple::Cookie. (Mark Stosberg) - CGI::Cookie->parse() now trims leading and trailing whitespace from cookie elements as intended. The change also makes this part of the parsing identical to CGI::Simple::Cookie (Mark Stosberg) - Temp file handling was improved (RT#62762) [SECURITY] - Further improvements have been made to guard against newline injections in headers. (Thanks to Max Kanat-Alexander, Yanick Champoux, Mark Stosberg) [PERFORMANCE] - Make EBCDIC a compile-time constant so there's zero overhead (and less compiled code) in subroutines that test for it. (Tim Bunce) - If you just want to use CGI::Cookie, CGI.pm will no longer be loaded unless you call the bake() method, which requires it. (Mark Stosberg) [DOCUMENTATION] - quit referring to the <link> tag as being "rarely used". (Victor Sanders) - typo and whitespace fixes (RT#62785, thanks to scop@cpan.org) - The -dtd argument to start_html() is now documented (RT#60473, Thanks to giecrilj and steve@fisharerojo.org) - CGI::Carp doc are updated to reflect that it can work with mod_perl 2.0. - when creating a temporary file in the directory fails, the error message could indicate the root of the problem better (Peter Gervai, Niko Tyni) [INTERNALS] - Re-fixing https test in http.t. (RT#54768, thanks to SPROUT) - param_fetch no longer triggers a warning when called with no arguments (ysth, Mark Stosberg) Version 3.50, Nov 8, 2010 [SECURITY] 1. The MIME boundary in multipart_init is now random. Thanks to Byron Jones, Masahiro Yamada, Reed Loden, and Mark Stosberg 2. Further improvements to handling of newlines embedded in header values. An exception is thrown if header values contain invalid newlines. Thanks to Michal Zalewski, Max Kanat-Alexander, Yanick Champoux, Lincoln Stein, Fr#d#ric Buclin and Mark Stosberg [DOCUMENTATION] 1. Correcting/clarifying documentation for param_fetch(). Thanks to Ren#e B#cker. (RT#59132) [INTERNALS] 1. Fixing https test in http.t. (RT#54768) 2. Tests were added for multipart_init(). Thanks to Mark Stosberg and CGI::Simple.
Revision 1.24 / (download) - annotate - [select for diffs], Sun Feb 7 16:02:20 2010 UTC (14 years, 1 month ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2011Q1-base,
pkgsrc-2011Q1,
pkgsrc-2010Q4-base,
pkgsrc-2010Q4,
pkgsrc-2010Q3-base,
pkgsrc-2010Q3,
pkgsrc-2010Q2-base,
pkgsrc-2010Q2,
pkgsrc-2010Q1-base,
pkgsrc-2010Q1
Changes since 1.23: +4 -4
lines
Diff to previous 1.23 (colored) to selected 1.4 (colored)
Update to 3.49: Version 3.49 [BUG FIXES] 1. Fix a regression since 3.44 involving a case when the header includes "Content-Length: 0". Thanks to Alex Vandiver (RT#51109) 2. Suppress uninitialized warnings under -w. Thanks to burak. (RT#50301) 3. url() now uses virtual_port() instead of server_port(). Thanks to MKANAT and Yanick Champoux. (RT#51562) [SECURITY] 1. embedded newlines are now filtered out of header values in header(). Thanks to Mark Stosberg and Yanick Champoux. [DOCUMENTATION] 1. README was updated to reflect that CGI.pm was moved under ./lib. Thanks to Alex Vandiver. [INTERNALS] 1. More tests were added for autoescape, thanks to Bob Kuo. (RT#25485) 2. Attempt to avoid test failures with t/fast, thanks to Steve Hay. (RT#49599)
Revision 1.23 / (download) - annotate - [select for diffs], Sun Oct 25 13:16:21 2009 UTC (14 years, 5 months ago) by sno
Branch: MAIN
CVS Tags: pkgsrc-2009Q4-base,
pkgsrc-2009Q4
Changes since 1.22: +4 -4
lines
Diff to previous 1.22 (colored) to selected 1.4 (colored)
Updating www/p5-CGI from 3.47 to 3.48 Upstream changes: Version 3.48 [BUG FIXES] 1. <optgroup> default values are now properly escaped. Thanks to #raleigh.pm and Mark Stosberg. (RT#49606) 2. The change to exception handling in CGI::Carp introduced in 3.47 has been reverted for now. It caused regressions reported in RT#49630. Thanks to mkanat for the report. [DOCUMENTATION] 1. Documentation for upload() has been overhauled, thanks to Mark Stosberg. 2. Documentation for tmpFileName has been added. Thanks to Mark Stosberg and Nathaniel K. Smith. 3. URLS were updated, thanks to Leon Brocard and Yanick Champoux. (RT#49770) [INTERNALS] 1. More tests were added for autoescape, thanks to Bob Kuo. (RT#25485)
Revision 1.22 / (download) - annotate - [select for diffs], Sat Sep 12 21:05:54 2009 UTC (14 years, 6 months ago) by sno
Branch: MAIN
CVS Tags: pkgsrc-2009Q3-base,
pkgsrc-2009Q3
Changes since 1.21: +4 -4
lines
Diff to previous 1.21 (colored) to selected 1.4 (colored)
Updating www/p5-CGI from 3.45 to 3.47 Upstream changes: Version 3.47 Re-release of 3.46, which did not contain a proper MANIFEST Version 3.46 [BUG FIXES] 1. In CGI::Pretty, we no longer add line breaks after tags we claim not to format. Thanks to rrt, Bob Kuo and and Mark Stosberg. (RT#42114). 2. unescapeHTML() no longer falsely recognizes certain text as entities. Thanks to Pete Gamanche, Mark Stosberg and Bob Kuo. (RT#39122) 3. checkbox_group() now correctly includes a space before the "checked" attribute. Thanks to Andrew Speer and Bob Kuo. (RT#36583) 4. Fix case-sensitivity in http() and https() according to docs. Make https() return list of keys in list context. Thanks to riQyRoe and Rhesa Rozendaal. (RT#12909) 5. XHTML is now automatically disabled for HTML 4, as well as HTML 2 and HTML 3. Thanks to Dan Harkless and Yanick Champoux. (RT#27907) 6. Pre-compiling 'end_form' with ':form' switch now works. Thanks to ryochin and Yanick Champoux. (RT#41530) 7. Empty name/values pairs are now properly saved and restored from filehandles. Thanks to rlucas and Rhesa Rozendaal (RT#13158) 8. Some differences between startform() and start_form() have been fixed. Thanks to Slaven Rezic and Shawn Corey. (RT#22046) 9. url_param() has been updated to be more consistent with the documentation and param(). Thanks to Britton Kerin and Yanick Campoux. (RT#43587) 10.hidden() now correctly supports multiple default values. Thanks to david@dierauer.net and Russell Jenkins. (RT#20436) 11.Calling CGI->new() no longer clobbers the value of $_ in the current scope. Thanks to Alexey Tourbin, Bob Kuo and Mark Stosberg. (RT#25131) 12.UTF-8 params should not get double-decoded now. Thanks to Yves, Bodo, Burak G"ursoy, and Michael Schout. (RT#19913) 13.We now give objects passed to CGI::Carp::die a chance to be stringified. Thanks to teek and Yanick Champoux (RT#41530) 14.Turning off autoEscape() now only affects the behavior of built-in HTML generation fuctions. Explicit calls to escapeHTML() always escape HTML regardless of the setting. Thanks to vindex, Bob Kuo and Mark Stosberg (RT#40748) 15.In CGI::Fast, preferences set via pragmas are now preserved. Thanks to heinst and Mark Stosberg (RT#32119) [DOCUMENTATION] 1. remote_addr() is now documented. Thanks to Yanick Champoux. (RT#38884) 2. In CGI::Pretty in the list of tags left unformatted was updated to match the code. Thanks to Mark Stosberg. (RT#42114) 3. In CGI::Pretty, performance concerns are now documented. Thanks to Jochen, Rhesa Rozendaal and Mark Stosberg (RT#13223) 4. A number of outdated Netscape references have been removed. Thanks to Mark Stosberg. 5. The documentation has been purged of examples of using indirect object notation. Thanks to Mark Stosberg. 6. Some POD formatting was fixed. Thanks to Dave Mitchell (RT#48935). 7. Docs and examples were updated to highlight start_form instead of startform. Thanks to Slaven Rezic. 8. Note that CGI::Carp::carpout() doesn't work with in-memory filehandles. Thanks to rhubbell and Mark Stosberg. 9. The documentation for the -newstyle_urls is now less confusing. Thanks to Ryan Tate and Mark Stosberg (RT#49454) [INTERNALS] 1. Quit bundling an ancient copy of Test::More and and using a custom 'lib' path for the tests. Instead, Test::More is now a dependency. Thanks to Ansgar and Mark Stosberg (RT#48811) 2. Automated tests for hidden() have been added, thanks to Russel Jenkins and Mark Stosberg (RT#20436) 3. t/util.t has been updated to use Test::More instead of a home-grown test function. Thanks to Bob Kuo.
Revision 1.21 / (download) - annotate - [select for diffs], Tue Aug 18 14:23:26 2009 UTC (14 years, 7 months ago) by sno
Branch: MAIN
Changes since 1.20: +4 -4
lines
Diff to previous 1.20 (colored) to selected 1.4 (colored)
Updating package www/p5-CGI from 3.44 to 3.45 Upstream changes: Version 3.45 [BUG FIXES] 1. Prevent warnings about "uninitialized values" for REQUEST_URI, HTTP_USER_AGENT and other environment variables. Patches by Callum Gibson, heiko and Mark Stosberg. (RT#24684, RT#29065) 2. Avoid death in some cases when running under Taint mode on Windows. Patch by Peter Hancock (RT#43796) 3. Allow 0 to be used as a default value in popup_menu(). This was broken starting in 3.37. Thanks to Haze, who was the first to report this and supply a patch, and pfschill, who pinpointed when the bug was introduced. A regression test for this was also added. (RT#37908) 4. Allow "+" as a valid character in file names, which fixes temp file creation on OS X Leopard. Thanks to Andy Armstrong, and alech for patches. (RT#30504) 5. Set binmode() on the Netware platform, thanks to Guenter Knauf (RT#27455) 6. Don't allow a CGI::Carp error handler to die recursively. Print a warning and exit instead. Thanks to Marc Chantreux. (RT#45956) 7. The Dump() method now is fixed to escape HTML properly. Thanks to Mark Stosberg (RT#21341) 8. Support for <optgroup> with scrolling_list() now works the same way as it does for popup_menu(). Thanks to Stuart Johnston (RT#30097) 9. CGI::Pretty now works properly when $" is set to ''. Thanks to Jim Keenan (RT#12401) 10. Fix crash when used in combination with PerlEx::DBI. Thanks to Burak G"ursoy (RT#19902) [DOCUMENTATION] 1. Several typos were fixed, Thanks to ambs. (RT#41105) 2. A typo related to the nosticky pragma was fixed, thanks to Britton Kerin. (RT#43220) 3. examples/nph-clock.cgi is now more portable, by calling localtime() rather than `/bin/date`, thanks to Guenter Knauf. (RT#27456). 4. In CGI::Carp, the SEE ALSO section was cleaned up, thanks to Slaven Rezic. (RT#32769) 5. The docs for redirect() were updated to reflect that most headers are ignored during redirection. Thanks to Mark Stosberg (RT#44911) [INTERNALS] 1. New t/unescapeHTML.t test script has been added. It includes a TODO test for a pre-existing bug which could use a patch. Thanks to Pete Gamache and Mark Stosberg (RT#39122) 2. New test scripts have been added for user_agent(), popup_menu() and query_string(), scrolling_list() and Dump() Thanks to Mark Stosberg and Stuart Johnston. (RT#37908, RT#43006, RT#21341, RT#30097) 3. CGI::Carp and CGI::Util have been updated to have non-developer version numbers. Thanks to Slaven Rezic. (RT#48425) 4. CGI::Switch and CGI::Apache now properly set their VERSION in their own name space. Thanks to Alexey Tourbin (RT#11941,RT#11942)
Revision 1.20 / (download) - annotate - [select for diffs], Sun Aug 9 13:01:48 2009 UTC (14 years, 7 months ago) by sno
Branch: MAIN
Changes since 1.19: +4 -4
lines
Diff to previous 1.19 (colored) to selected 1.4 (colored)
Updating package for p5 CGI.pm module from 3.43 to 3.44 pkgsrc changes: - Adjusting license information according to module Pod Upstream changes: Version 3.44 1. Patch from Kurt Jaeger to allow HTTP PUT even if the content length is unknown. 2. Patch from Pavel merdin to fix a problem for one of the FireFox addons. 3. Fixed issue in mod_perl & fastCGI environment of cookies returned from CGI->cookie() leaking from one session to another.
Revision 1.19 / (download) - annotate - [select for diffs], Sun Apr 12 11:59:13 2009 UTC (14 years, 11 months ago) by sno
Branch: MAIN
CVS Tags: pkgsrc-2009Q2-base,
pkgsrc-2009Q2
Changes since 1.18: +4 -4
lines
Diff to previous 1.18 (colored) to selected 1.4 (colored)
PkgSrc changes: - Updating package for p5 module to 3.43 Upstream changes: Version 3.43 1. Documentation patch from MARKSTOS@cpan.org to replace all occurrences of "new CGI" with CGI->new()" to reflect best perl practices. 2. Patch from Stepan Kasal to fix utf-8 related problems in perl 5.10
Revision 1.18 / (download) - annotate - [select for diffs], Thu Dec 18 21:37:34 2008 UTC (15 years, 3 months ago) by he
Branch: MAIN
CVS Tags: pkgsrc-2009Q1-base,
pkgsrc-2009Q1,
pkgsrc-2008Q4-base,
pkgsrc-2008Q4
Changes since 1.17: +4 -4
lines
Diff to previous 1.17 (colored) to selected 1.4 (colored)
Update from version 3.40nb1 to 3.42. Fixes PR#40186. Upstream changes: Version 3.42 1. Added patch from Renee Baecker that makes it possible to subclass CGI::Pretty. 2. Added patch from Nicholas Clark to allow ~ characters in temporary directories. 3. Added patch from Renee Baecker that fixes the inappropriate escaping of fields in multipart headers. Version 3.41 1. Fix url() returning incorrect path when query string contains escaped newline. 2. Added additional windows temporary directories and environment variables, courtesy patch from Renee Baecker 3. Added a handle() method to the lightweight upload filehandles. This method returns a real IO::Handle object. 4. Added patch from Tony Vanlingen to fix deep recursion warnings in CGI::Pretty.
Revision 1.17 / (download) - annotate - [select for diffs], Sun Aug 24 14:00:59 2008 UTC (15 years, 7 months ago) by tonnerre
Branch: MAIN
CVS Tags: pkgsrc-2008Q3-base,
pkgsrc-2008Q3,
cube-native-xorg-base,
cube-native-xorg
Changes since 1.16: +4 -4
lines
Diff to previous 1.16 (colored) to selected 1.4 (colored)
Update the CGI.pm Perl module to version 3.40 (from 3.35) as required by devel/rt3 in fastcgi mode. Changes since 3.35: - CGI::Fast no longer depends on a specific Perl version. - Makefile.PL now depends on FCGI so that CGI::Fast installs properly. - Fixed regression in "exists" function when using tied interface to CGI via $q->Vars. - Added nobr() function. - popup_menu() allows multiple items to be selected by default. - Patch from Renee Backer to avoid doubled <http-equiv> headers. - Fixed documentation bug that describes what happens when a parameter is empty. - Fixed overlap of attribute and parameter space. - Fix pragmas so that they persist over modperl invocations. - Fixed handling of chunked multipart uploads. - Fix CGI::Cookie to support cookies that are separated by "," instead of ";". Maybe we should add a patch to handle the p5-FCGI dependency as an option later?
Revision 1.16 / (download) - annotate - [select for diffs], Thu Apr 17 18:21:40 2008 UTC (15 years, 11 months ago) by abs
Branch: MAIN
CVS Tags: pkgsrc-2008Q2-base,
pkgsrc-2008Q2,
cwrapper
Changes since 1.15: +4 -4
lines
Diff to previous 1.15 (colored) to selected 1.4 (colored)
Update www/p5-CGI to 3.35 Version 3.35 1. Resync with bleadperl, primarily fixing a bug in parsing semicolons in uploaded filenames. Version 3.34 1. Handle Unicode %uXXXX escapes properly -- patch from DANKOGAI@cpan.org 2. Fix url() method to not choke on path names that contain regex characters. Version 3.33 1. Remove uninit variable warning when calling url(-relative=>1) 2. Fix uninit variable warnings for two lc calls 3. Fixed failure of tempfile upload due to sprintf() taint failure in perl 5.10 Version 3.32 1. Patch from Miguel Santinho to prevent sending premature headers under mod_perl 2.0 Version 3.31 1. Patch from Xavier Robin so that CGI::Carp issues a 500 Status code rather than a 200 status code. 2. Patch from Alexander Klink to select correct temporary directory in OSX Leopard so that upload works. 3. Possibly fixed "wrapped pack" error on 5.10 and higher. Version 3.30 1. Patch from Mike Barry to handle POSTDATA in the same way as PUT. 2. Patch from Rafael Garcia-Suarez to correctly reencode unicode values as byte values.
Revision 1.15 / (download) - annotate - [select for diffs], Sat Oct 13 11:55:15 2007 UTC (16 years, 5 months ago) by adam
Branch: MAIN
CVS Tags: pkgsrc-2008Q1-base,
pkgsrc-2008Q1,
pkgsrc-2007Q4-base,
pkgsrc-2007Q4
Changes since 1.14: +4 -4
lines
Diff to previous 1.14 (colored) to selected 1.4 (colored)
Changes 3.29: 1. The position of file handles is now reset to zero when CGI->new is called. 2. uploadInfo() now works across multiple object instances. Also, the first tests for uploadInfo() were added as part of the fix. Changes 3.28: 1. Applied patch from Allen Day that makes Cookie parsing RFC2109 compliant attribute/values can be separated by commas as well as semicolons). 2. Applied patch from Stephan Struckmann that allows script_name() to be set correctly. 3. Fixed problem with url(-full) in which port number appears twice.
Revision 1.14 / (download) - annotate - [select for diffs], Fri Mar 16 20:32:09 2007 UTC (17 years ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2007Q3-base,
pkgsrc-2007Q3,
pkgsrc-2007Q2-base,
pkgsrc-2007Q2,
pkgsrc-2007Q1-base,
pkgsrc-2007Q1
Changes since 1.13: +4 -4
lines
Diff to previous 1.13 (colored) to selected 1.4 (colored)
Update to 3.27: Version 3.27 1. Applied patch from Steve Taylor that allows checkbox_groups to be disabled with a new -disabled=> option. Version 3.26 1. Fixed alternate stylesheet behavior so that it is insensitive to order of declarations. 2. Patch from John Binns to allow users to provide a callback to CGI::Carp. 3. Added "~" as an unreserved character in escape(). 4. Patch from Chris Fedde to prevent HTTP_HOST from inhibiting SERVER_PORT in url() generation. 5. Fixed outdated documentation (and behavior) of -language in start_html -script option. 6. Fixed bug in seconds calculation in CGI::Util::expire_calc. Version 3.25 1. Fixed the link to the Netscape frames page. 2. Added ability to specify an alternate stylesheet. 3. Add support for XForms POST submssion both as application/xml or as multipart/related Version 3.24 1. In startform(), if request_uri() returns undef, then falls back to self_url(). This should rarely happen except when run outside of the CGI environment. 2. image button alignment options were mistakenly being capitalized, causing xhtml validation to fail. Version 3.23 1. Typo in upload() persisted, now fixed for real. Thanks to Emanuele Zeppieri for correct patch and regression test. Version 3.22 1. Typo in upload() function broke uploads. Now fixed (CPAN bug 21126). Version 3.21 1. Don't try to read data at all when POST > $POST_MAX. 2. Fixed bug that caused $cgi->param('name',undef,'value') to unset param('name') entirely. 3. Fixed bug in which upload() sometimes returns empty. (CPAN bug #12694). 4. Incorporated patch from BURAK@cpan.org to support HTTPcookies (CPAN bug 21019).
Revision 1.13 / (download) - annotate - [select for diffs], Wed Jul 12 17:03:43 2006 UTC (17 years, 8 months ago) by heinz
Branch: MAIN
CVS Tags: pkgsrc-2006Q4-base,
pkgsrc-2006Q4,
pkgsrc-2006Q3-base,
pkgsrc-2006Q3
Changes since 1.12: +4 -4
lines
Diff to previous 1.12 (colored) to selected 1.4 (colored)
Updated to version 3.20. Pkgsrc changes: - none Relevant changes since version 3.11: ==================================== Version 3.20 1. Patch from David Wheeler for CGI::Cookie->bake(). Uses mod_perl headers_out->add() rather than headers_out->set(). 2. Fixed problem identified by Andrei Voronkov in which start_form() output was screwed up when initial argument begins with a dash and subsequent arguments do not. 3. Quashed uninitialized variable warnings coming from script_name(), url() and other functions that require access to the PATH_INFO environment variable. Version 3.19 1. Added patch from Stephen Frost that allows one to suppress use of the temp file that is created during uploads. 2. Fixed problem noted by Martin Foster in which regular expression meta-character terms in the path information were not quoted, causing URL parsing to fail on URLs that contained metacharacters (such as +). 3. More fixes to the url() method. 4. Removed "hack to fix broken PATH_INFO in MSII". Version 3.18 1. Doc typo fixes. 2. Patch from Steve Peters to default the document type to match the charset. 3. Fixed param() so that param(-name=>'foo',-values=>[]) sets the parameter to empty list. Version 3.17 Fri Feb 24 14:01:27 EST 2006 1. Added patch from Mike Hanafey which caused 0 arguments to CGI::Cookie->new() to be treated as empty. 2. Patch to CGI::Carp from Peter Whaite to fix the unfixable problem of CGI::Carp not behaving correctly in an eval() context. 3. CGI::Fast->new() calls CGI->_reset_globals to avoid contamination of one session with another's variables. 4. Fixed upload failure on files that contain semicolons in their names. Version 3.16 Wed Feb 8 13:29:11 EST 2006 1. header() -charset option now works even when the MIME type is not "text". 2. Fixed documentation for cookie() function and fastCGI. 3. Upload filehandles now only closed automatically on Windows systems. 4. Apache::Cookie compatibility fix from David Wheeler 5. CGI::Carp->fatalsToBrowser() does not work correctly with mod_perl 2. No workaround is known. 6. Fixed text status code associated with 302 redirects. Should be "Found" but was "Moved". 7. Fixed charset in start_html() and header() to be in synch. Version 3.14 Tue Dec 6 17:12:03 EST 2005 1. Fixed broken scrolling_list() select attribute. Version 3.14 Tue Dec 6 17:12:03 EST 2005 1. Fixed broken scrolling_list() select attribute. Version 3.13 1. Removed extraneous empty "?" from end of self_url(). Version 3.12 1. Fixed virtual_port so that it works properly with https protocol. 2. Fixed documentation for upload_hook(). 3. Added POSTDATA documentation. 4. Made upload_hook() work in function-oriented mode. 5. Fixed POST_MAX behavior so that it doesn't cause client to hang. 6. Disabled automatic tab indexes and added new -tabindex pragma to turn automatic indexes back on. 7. The url() and self_url() methods now work better in the context of Apache mod_rewrite. Be advised that path_info() may give you confusing results when mod_rewrite is active because Apache calculates the path info *after* rewriting. This is mostly worked around in url() and self_url(), but you may notice some anomalies. 8. Removed empty (and non-validating) <div> from code emitted by end_form(). 9. Fixed CGI::Carp to work correctly with Mod_perl 1.29 in an Apache 2 environment. 10. Setting $CGI::TMPDIRECTORY should now be effective. none
Revision 1.12 / (download) - annotate - [select for diffs], Thu Oct 20 17:33:04 2005 UTC (18 years, 5 months ago) by abs
Branch: MAIN
CVS Tags: pkgsrc-2006Q2-base,
pkgsrc-2006Q2,
pkgsrc-2006Q1-base,
pkgsrc-2006Q1,
pkgsrc-2005Q4-base,
pkgsrc-2005Q4
Changes since 1.11: +4 -4
lines
Diff to previous 1.11 (colored) to selected 1.4 (colored)
Update www/p5-CGI to 3.11: Version 3.11 1. Killed warning in CGI::Cookie about MOD_PERL_API_VERSION 2. Fixed append() so that it works in function mode. 3. Workaround for a bug that appears in Apache2 versions through 2.0.54 in which SCRIPT_NAME and PATH_INFO are incorrect if the additional path_info contains a double slash. This workaround will handle the common case of http://mysite.com/cgi-bin/log.cgi/http://www.some.other.site/args, but will not handle the uncommon case of a ScriptAlias directive that adds additional path information to the end of the translated URI.
Revision 1.11 / (download) - annotate - [select for diffs], Wed Jun 22 20:39:25 2005 UTC (18 years, 9 months ago) by reed
Branch: MAIN
CVS Tags: pkgsrc-2005Q3-base,
pkgsrc-2005Q3
Changes since 1.10: +4 -4
lines
Diff to previous 1.10 (colored) to selected 1.4 (colored)
Update to version 3.10 which is apparently needed for new apache2/modperl2.0. This will close PR #30302. Changes says: Version 3.10 1. Added Apache2::RequestIO, which is necessary for mp2 interoperability. Version 3.09 1. Fixed tabindex="0" when using CGI to create forms without a prior start_html 2. Removed warning about non-numeric MOD_PERL_API_VERSION. Version 3.08 1. update support for mod_perl 2.0. versions prior to mod_perl 1.999_22 (2.0.0-RC5) are no longer supported. Version 3.07 1. Fixed typo in mod_perl detection. Version 3.06 1. Fixed bare call to script() in start_html 2. Moved Fh::DESTROY out of autoloaded functions so as to avoid clobbering $@ when CGI functions are executed in an eval{} context. 3. mod_perl 2.0 version detection patch in CGI::Cookie provided by Allen Day. 4. autoEscape() flag is now respected when generating extra attributes. 5. Tests for *tag start/end generation from Shlomi Fish. 6. Support for can() method provided by Ron Savage. 7. Fix for lang='' when outputting XHTML. 8. Added support for chunked transfer encoding, as suggested by Hakan Ardo 9. Fixed clobbering of row and column headers in tableized radio and checkbox groups, as reported by Nicolas Thierry-Mieg. 10. <Label> tags are now associated with form elements, as suggested by accessibility guidelines. 11. The <?xml> directive produced by start_html is now turned off by default and the charset is specified in a <meta> directive. Apparently IE6 (and maybe some versions of Opera) were getting confused by this. 12. Support for tab indexes. 13. Retired the HTML docs. The POD docs are now primary documentation. 14. CGI::Carp now correctly detects and handles Apache::Dispatch. 15. CGI::Util::utf8_chr now correctly sets the UTF8 flag on 5.006 or higher perls (fix courtesy Slaven Rezic).
Revision 1.10 / (download) - annotate - [select for diffs], Thu Feb 24 14:08:35 2005 UTC (19 years, 1 month ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2005Q2-base,
pkgsrc-2005Q2,
pkgsrc-2005Q1-base,
pkgsrc-2005Q1
Changes since 1.9: +2 -1
lines
Diff to previous 1.9 (colored) to selected 1.4 (colored)
Add RMD160 checksums.
Revision 1.9 / (download) - annotate - [select for diffs], Sat May 15 13:22:03 2004 UTC (19 years, 10 months ago) by heinz
Branch: MAIN
CVS Tags: pkgsrc-2004Q4-base,
pkgsrc-2004Q4,
pkgsrc-2004Q3-base,
pkgsrc-2004Q3,
pkgsrc-2004Q2-base,
pkgsrc-2004Q2
Changes since 1.8: +3 -3
lines
Diff to previous 1.8 (colored) to selected 1.4 (colored)
Update to version 3.05. Revision History Version 3.05 1. Fixed uninitialized variable warning on start_form() when running from command line. 2. Fixed CGI::_set_attributes so that attributes with a - are handled correctly. 3. Fixed CGI::Carp::die() so as to avoid problems from _longmess() clobbering @_. 4. If HTTP_X_FORWARDED_HOST is defined (i.e. running under a proxy), the various functions that return HOST will use that instead. 5. Fix for undefined utf8() call in CGI::Util. 6. Changed the call to warningsToBrowser() in CGI::Carp::fatalsToBrowser to call only after HTTP header is sent (thanks to Didier Lebrun for noticing). 7. Patches from Dan Harkless to make CGI.pm validatable against HTML 3.2. 8. Fixed an extraneous "foo=bar" appearing when extra style parameters passed to start_html; 9. Fixed potential cross-site scripting bug in startform(). 10. Fixed documentation to discuss list context behavior of form-element generators explicitly. 11. Fixed incorrect results from end_form() when called in OO manner. 12. Fixed query string stripping in order to handle URLs containing escaped newlines. 13. During server push, set NPH to 0 rather than 1. This is supposed to fix problems with Apache. 14. Fixed incorrect processing of multipart form fields that contain embedded quotes. There's still the issue of how to handle ones that contain embedded semicolons, but no one has complained (yet). 15. Fixed documentation bug in -style argument to start_html() 16. Added -status argument to redirect(). Version 3.04 1. Fixed the problem with mod_perl crashing when "defaults" button pressed. Version 3.03 1. Fix upload hook functionality 2. Workaround for CGI->unescape_html() 3. Bumped version numbers in CGI::Fast and CGI::Util for 5.8.3-tobe Version 3.02 1. Bring in Apache::Response just in case. 2. File upload on EBCDIC systems now works. Version 3.01 1. No fix yet for upload failures when running on EBCDIC server. 2. Fixed uninitialized glob warnings that appeared when file uploading under perl 5.8.2. 3. Added patch from Schlomi Fish to allow debugging of PATH_INFO from command line. 4. Added patch from Steve Hay to correctly unlink tmp files under mod_perl/windows 5. Added upload_hook functionality from Jamie LeTaul 6. Workarounds for mod_perl 2 IO issues. Check that file upload and state saving still working. 7. Added code for underreads. 8. Fixed misleading description of redirect() and relative URLs in the POD docs. 9. Workaround for weird interaction of CGI::Carp with Safe module reported by William McKee. 10. Added patches from Ilmari Karonen to improve behavior of CGI::Carp. 11. Fixed documentation error in -style argument. 12. Added virtual_port() method for finding out what port server is listening on in a virtual-host aware fashion. Version 3.00 1. Patch from Randal Schwartz to fix bug introduced by cross-site scripting vulnerability "fix." 2. Patch from JFreeman to replace UTF-8 escape constant of 0xfe with 0xfc. Hope this is right! Version 2.99 1. Patch from Steve Hay to fix extra Content-type: appearing on browser screen when FatalsToBrowser invoked. 2. Patch from Ewann Corvellec to fix cross-site scripting vulnerability. 3. Fixed tmpdir routine for file uploading to solve problem that occurs under mod_perl when tmpdir is writable at startup time, but not at session time.
Revision 1.8 / (download) - annotate - [select for diffs], Sun Sep 14 05:33:29 2003 UTC (20 years, 6 months ago) by kim
Branch: MAIN
CVS Tags: pkgsrc-2004Q1-base,
pkgsrc-2004Q1,
pkgsrc-2003Q4-base,
pkgsrc-2003Q4
Changes since 1.7: +3 -3
lines
Diff to previous 1.7 (colored) to selected 1.4 (colored)
Upgrade to p5-CGI-2.98 - Fixed crash in Dump() function. - Removed warning from reset() method. - Moved <area> and <map> tags into the :html3 group. Hope this removes undefined CGI::Area errors. - Changed CGI::Carp to play with mod_perl2 and to (hopefully) restore reporting of compile-time errors. - Fixed potential deadlock between web server and CGI.pm when aborting a read due to POST_MAX (reported by Antti Lankila). - Fixed issue with tag-generating function not incorporating content when first variable undef. - Fixed cross-site scripting bug reported by obscure. - Fixed Dump() function to return correctly formed XHTML - bug reported by Ralph Siemsen. - Fix to be P3P compliant submitted from MPREWITT. - Added CGI->r() API for mod_perl1/mod_perl2. - Fixed bug in redirect() that was corrupting cookies. - Minor fix to behavior of reset() button to make it consistent with submit() button (first time this has been changed in 9 years). - Patch from Dan Kogai to handle UTF-8 correctly in 5.8 and higher. - Patch from Steve Hay to make CGI::Carp's error messages appear on MSIE browsers. - Added Yair Lenga's patch for non-urlencoded postings. - Added Stas Bekman's patches for mod_perl 2 compatibility. - Fixed uninitialized escape behavior submitted by William Campbell. - Fixed tied behavior so that you can pass arguments to tie() - Fixed incorrect generation of URLs when the path_info contains + and other odd characters. - Fixed redirect(-cookies=>$cookie) problem. - Fixed tag generation bug that affects -javascript passed to start_html().
Revision 1.7 / (download) - annotate - [select for diffs], Sat Sep 13 08:50:37 2003 UTC (20 years, 6 months ago) by jlam
Branch: MAIN
Changes since 1.6: +1 -2
lines
Diff to previous 1.6 (colored) to selected 1.4 (colored)
Remove unneeded patch... module.mk sets INSTALLDIRS for us.
Revision 1.6 / (download) - annotate - [select for diffs], Mon Apr 21 18:33:35 2003 UTC (20 years, 11 months ago) by mjl
Branch: MAIN
Changes since 1.5: +3 -3
lines
Diff to previous 1.5 (colored) to selected 1.4 (colored)
Update p5-CGI to 2.91 - Attribute generation now correctly respects the value of autoEscape() - Fixed endofrm() syntax error - Fixed bug in redirect header handling - Added P3P option to header() - Patches to make CGI::Carp work correctly with object-oriented exceptions - Removed inaccurate description of how to set multiple cookies from CGI::Cookie pod file - Patch to prevent running out of filehandles when uploading lots of files - Documentation enhancement to note that the import_names() method transforms the parameter names into valid Perl names - Patch to suppress lang attribute in <html> tag if not provided explicitly - Patch to fix broken XHTML-transitional 1.0 validation on endform() - Custom html header fix (first letter correctly upcased now) - Added a -verbatim option to stylesheet generation - Faster delete() method - Added empty charset support - Patch to fix file upload failures when uploaded file is a multiple of 4096 - Fixed behavior of ACTION tag when POSTING to a URL that has a query string - Patch to handle multipart/mixed uploads from Opera
Revision 1.5 / (download) - annotate - [select for diffs], Fri Feb 21 14:01:07 2003 UTC (21 years, 1 month ago) by wiz
Branch: MAIN
Changes since 1.4: +3 -3
lines
Diff to previous 1.4 (colored)
Update to 2.88, closes PR 20323. Edited list of changes (many bug fixes removed): Version 2.87 1. Security hole patched: when processing multipart/form-data postings, most arguments were being untainted silently. Returned arguments are now tainted correctly. This may cause some scripts to fail that used to work (thanks to Nick Cleaton for pointing this out and persisting until it was fixed). 2. Update for mod_perl 2.0. 3. Pragmas such as -no_xhtml are now respected in mod_perl environment. Version 2.84 2. HTML escaping code now replaced 0x8b and 0x9b with unicode references < and *#8250; Version 2.83 3. Added Max-Age to list of CGI::Cookie headers. Version 2.82 1. Patch from Rudolf Troller to add attribute setting and option groups to form fields. 3. Patch from Scott Gifford allows you to set the program name for CGI::Carp. Version 2.81 1. Removed extraneous slash from end of stylesheet tags generated by start_html in non-XHTML mode. 2. Changed behavior of CGI::Carp with respect to eval{} contexts so that output behaves properly in mod_perl environments. Version 2.80 2. Changed checked="1" to checked="checked" for real XHTML compatibility. 3. Resurrected REQUEST_URI code so that url() works correctly with multiviews.
Revision 1.4 / (download) - annotate - [selected], Mon Jan 28 00:27:36 2002 UTC (22 years, 2 months ago) by jlam
Branch: MAIN
CVS Tags: pkgviews-base,
pkgviews,
netbsd-1-6-RELEASE-base,
netbsd-1-6-1-base,
netbsd-1-6-1,
netbsd-1-6,
netbsd-1-5-PATCH003,
buildlink2-base,
buildlink2
Changes since 1.3: +4 -4
lines
Diff to previous 1.3 (colored)
Update www/p5-CGI to version 2.79. This closes pkg/15342 by Allen Briggs <briggs@ninthwonder.com>. If you use CGI.pm, then this update is highly recommended. Changes from version 2.75.2 include: * Changes to CGI::Carp to avoid "subroutine redefined" error messages. * Default DTD is now XHTML 1.0 Transitional * Patches to support all HTML4 tags. * Added ability to change encoding in <?xml> assertion. * Fixed the old escapeHTML('CGI') ne "CGI" bug * In accordance with XHTML requirements, there are no longer any minimized attributes, such as "checked". --> Patched bug which caused file uploads of exactly 4096 bytes to be truncated to 4094 (thanks to Kevin Mahony) * New tests and fixes to CGI::Pretty (thanks to Michael Schwern). * New esc.t regression test for EBCDIC translations courtesy Peter Prymmer. * Patches from James Jurach to make compatible with FCGI-ProcManager * Additional fields passed to header() (like -Content_disposition) now honor initial capitalization. * Patch from Andrew McNaughton to handle utf-8 escapes (%uXXXX codes) in URLs.
Revision 1.3 / (download) - annotate - [select for diffs], Thu Jun 7 04:29:04 2001 UTC (22 years, 9 months ago) by jlam
Branch: MAIN
Changes since 1.2: +4 -4
lines
Diff to previous 1.2 (colored) to selected 1.4 (colored)
Update p5-CGI to 2.75.2. Changes include a fix for a syntax error in a subroutine definition.
Revision 1.2 / (download) - annotate - [select for diffs], Fri Apr 20 12:02:39 2001 UTC (22 years, 11 months ago) by skrll
Branch: MAIN
CVS Tags: netbsd-1-5-PATCH001
Changes since 1.1: +3 -2
lines
Diff to previous 1.1 (colored) to selected 1.4 (colored)
Move to sha1 digests, and add distfile sizes.
Revision 1.1 / (download) - annotate - [select for diffs], Tue Apr 17 12:13:03 2001 UTC (22 years, 11 months ago) by agc
Branch: MAIN
Diff to selected 1.4 (colored)
+ move the distfile digest/checksum value from files/md5 to distinfo + move the patch digest/checksum values from files/patch-sum to distinfo