| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
When using the libnbcompat version of getopt, make sure to not use
optind = 0. For GNU getopt compatibility, it does a partial reset.
This fixes PR 39181.
|
|
usage attributes are present and emailProtection is not included, so
require it as well as codeSigning.
|
|
|
|
checks. X509_check_ca does not exist in older OpenSSL versions.
Fixes PR 39181.
|
|
Fix OpenSSL usage so that the key usage check can actually work.
Teach pkg_info about signed packages.
|
|
a signed package, but couldn't validate the signature.
Make pkg_info try to validate the signature. It will print an error to
stderr if it can't validate the signature, but otherwise continue.
|
|
This has the side effect of actually setting ex_xkusage.
|
|
Based on a discussion with tls@, make the key validation stricter.
Don't allow CA keys for packages or pkg-vulnerabilities.
Require CODE SIGN as key usage attribute for packages.
Require that no key usage attribute is set for pkg-vulnerabilities.
The latter is not finalised and might change again.
|
|
Restore current directory before processing a package on the command
line to allow installing more than one package with full filename.
|
|
|
|
|
|
had a depth around 17. Given that ISO C allows at least 20 open streams,
that should be good enough on all systems.
|
|
As reminded by an old make replace commit, keep +INSTALLED_INFO around
for pkg_add -u. Refactor the code a bit.
|
|
pkg_admin check-signature exits with 0 only if all given packages have a
valid signature.
pkg_add will keep the preserve state of a package when updating.
|
|
|
|
|
|
Add pkg_install.conf.5 man page from Thomas Klausner, reference it from
pkg_add and pkg_admin. Fix a build issue for the !SSL case.
|
|
|
|
Stop installation the pkg_view and linkform script as part of
pkg_install. They are the only remaining user of the pax dependency.
This was discussed was agc@ and the consensus is that if someone really
wants them, they should be pulled into a separate less essential
package.
|
|
|
|
NetBSD build.
|
|
|
|
|
|
|
|
file when -p is given to pkg_add.
|
|
|
|
VERIFIED_INSTALLATION supports:
never (default): print signature, but don't care about it.
always: check for valid signature, abort otherwise
trusted: ask for packages without valid signature
interactive: always ask before installation
|
|
|
|
|
|
valid in that case.
|
|
covering the GPG signature as well, which is not intended.
Make the parser to decide what parts are the real content and what parts
are signatures more strict. This also allows us to later drop the GPG
signature if we want to.
|
|
all. Use it to speed up pkg_match and the audit-history backend.
This improves ``pkg_admin audit'' from 1.333s to 0.098s and
``pkg_admin audit php libpng'' from 0.034s to 0.029s on my laptop.
|
|
The support for non-native OpenSSL still needs to be done, e.g.
ensure static linkage for that. Documentation is essentially missing.
|
|
but not this one and mixing implementations results in very strange
errors.
|
|
Add a new VERIFY_CMD to be used by pkg_add soon.
|
|
download-vulnerability-list.
|
|
Known regressions:
- "pkg_add -" (aka reading from stdin) is currently not supported
- "pkg_add -s" is not supported either
- no progress reports for the downloads
- binary packages with hardlinks created by pkg_create before
pkg_install-20080422 will not extract correctly (libarchive issue)
- no adhoc check for potential conflicts between dependencies and
already installed packages
Features:
- Twice as fast for the typical case of /var/tmp and /usr/pkg on
different filesystems
- Standalone
- implicit conflict detection before actual installation.
|
|
work as it will still use the one in the package. Use the approach from
pkg_add to override it instead.
|
|
|
|
0.31 Sun Mar 16 20:51:04 EDT 2008
* Test suite parallelization fixes. Thanks to Slaven Rezic
0.30 Tue Mar 11 12:14:24 EDT 2008
* Minor doc fix from Paul Miller.
* Fixing doc style from "$this" to "$self" like any self-respecting perl code
0.29 Fri Feb 15 11:43:29 EST 2008
* new example section from almut on perlmonks
0.28 Tue Jan 15 09:33:58 EST 2008
* New restartability support from Mark Stosberg
After reviewing the code in HTTP::Server::Simple,
Catalyst::Engine::HTTP and HTTP::Server::Brick, I found and
implemented an updated signal handling approach that I like and
understand, and actually works.
The current code restarted immediately if a SIGHUP came in, no
matter what was happening, including if a request was in process of
being fulfilled.
The new code works more like "apachectl graceful". It waits for the
current request cycle to finish, and then restarts the server.
This code has to be integrated in the core, but its just about
the same amount of signal handling code that was there... it just
works better. It's also written in such a way I think subclass/mixin
authors could rewrite just these parts if they wanted.
Also, it looks like a Net::Server based sub-class would already be
doing its own thing with SIGHUP handling, and should continue to
be unaffected.
|
|
|
|
1.86 2008-02-01 by Alexandr Ciornii
- Default number of semaphores for *BSD is 8 in Apache::Session::Lock::Semaphore
1.85_01 2008-01-24 by Alexandr Ciornii
- typos corrected (catched by Gerald Fox)
- more tests and diag in 99semaphore.t
- no warning "disconnect invalidates 2 active statement" in
Apache::Session::Lock::MySQL by Tony Cook (RT#32148)
1.85 2007-12-20 by Alexandr Ciornii, Perl 20th birthday version
- mention Catalyst::Plugin::Session, Session
1.84_01 2007-11-26 by Alexandr Ciornii (alexchorny AT gmail.com)
- Added Apache::Session::Lock::Semaphore::remove to remove semaphore
- 99flex.t will remove semaphore (RT#30440)
- 99flex.t should work on 5.6.1 again (no chdir now)
- 99flex.t will clean all temporary files (RT#30209)
- pod.t included in MANIFEST
- cleaner tests
1.84 2007-10-02 by Alexandr Ciornii (alexchorny AT gmail.com)
- Added constant.pm to the list of prerequisites
- Jeffrey W. Baker, Casey West, Alexandr Ciornii, Oliver Maul agreed to
change license of all files to Perl license
Alexandr Ciornii agrees to relicense to Artistic 2.0 in future if needed.
- 99flex.t will be skipped on *bsd and Solaris
1.83_01 2007-08-03 by Alexandr Ciornii
- better handling of Storable errors by Rick Delaney (RT#27476)
1.83=1.82_05 2007-05-25
1.82_05 2007-05-14 by Alexandr Ciornii
- skipping part of 99flex.t on NetBSD
1.82_04 2007-04-27 by Alexandr Ciornii
- More diagnostics in Apache::Session::Lock::Semaphore::acquire_write_lock,
acquire_read_lock
- Did not increment modules versions in previous versions of distribution
- Apache::Session::Lock::Semaphore can work with private semaphore
- 99flex.t will use private semaphore
- 99dbfile.t, 99dbfilestore.t - added undef (for RT#6216)
1.82_03 2007-03-12 by Alexandr Ciornii
- Apache::Session::Lock::File checks flock success (RT#6936)
- Apache::Session::Lock::File will not change to shared lock if write
lock is in effect and read lock is requested (RT#7072)
- 99dbfile.t, 99dbfilestore.t - added untie (for RT#6216)
- Apache::Session::Lock::Semaphore will check for $Config{d_semget} and
cygserver
1.82_02 2007-03-11 by Alexandr Ciornii
- 99semaphore.t, 99flex.t will be skipped if $Config{d_semget}==undef,
patch by Slaven Rezic
- Removed redundant code in 99filelock.t
- Removed unnecessary skip in 99nulllock.t
- Added file 'Contributing.txt'
- Apache::Session - mention CGI::Session
- Request in Makefile.PL
1.82_01 2007-03-10 by Alexandr Ciornii
- Applied part of patch of SREZIC (Slaven Rezic), RT#3670,
more diagnostics on failing file operations (Apache::Session::Lock::File,
Apache::Session::Store::DB_File, Apache::Session::Store::File)
- RT#1251, ModUniqueId.pm, ModUsertrack.pm - small error in Carp usage,
by Slaven Rezic
- 99flex.t will be skipped on perls earlier than 5.8 (RT#16539)
- Requires Storable (core from 5.7.3), as it is almost useless without it
|
|
|
|
2.0.4 April 16, 2008
Fix $r->location corruption under certain conditions
[Gozer]
Fix a crash when spawning Perl threads under Perl 5.10
[Gozer]
Fix erratic behaviour when filters were used with Perl 5.10
[Gozer]
Fix problems with redefinitions of perl_free as free and perl_malloc
as malloc on Win32, as described at
http://marc.info/?l=apache-modperl&m=119896407510526&w=2
[Tom Donovan]
Fix a crash when running a sub-request from within a filter where
mod_perl was not the content handler. [Gozer]
Refactor tests to use keepalives instead of same_interp [Gozer, Phred]
Apache2::Reload has been moved to an externally maintained
CPAN distribution [Fred Moyer <fred@redhotpenguin.com>]
PerlCleanupHandler are now registered with a subpool of $r->pool,
instead of $r->pool itself, ensuring they run _before_ any other
$r->pool cleanups [Torsten Foertsch]
Fix a bug that would prevent pnotes from being cleaned up properly
at the end of the request [Torsten Foertsch]
On Win32, embed the manifest file, if present, in mod_perl.so,
so as to work with VC 8 [Steve Hay, Randy Kobes]
Expose apr_thread_rwlock_t with the APR::ThreadRWLock module
[Torsten Foertsch]
Don't waste an extra interpreter anymore under threaded MPMs when using a
modperl handler [Torsten Foertsch]
Fix a bug that could cause a crash when using $r->push_handlers() multiple
times for a phase that has no configured handlers [Torsten Foertsch]
Catch up with some httpd API changes
2.2.4:
The full server version information is now included in the error log at
startup as well as server status reports, irrespective of the setting
of the ServerTokens directive. ap_get_server_version() is now
deprecated, and is replaced by ap_get_server_banner() and
ap_get_server_description(). [Jeff Trawick]
2.3.0:
ap_get_server_version() has been removed. Third-party modules must
now use ap_get_server_banner() or ap_get_server_description().
[Gozer]
fixed Apache2::compat Apache2::ServerUtil::server_root() resolution
issues [Joshua Hoblitt]
*) SECURITY: CVE-2007-1349 (cve.mitre.org)
fix unescaped variable interprolation in regular expression
[Randal L. Schwartz <merlyn@stonehenge.com>, Fred Moyer <fred@redhotpenguin.com>]
Make $r->the_request() writeable
[Fred Moyer <fred@redhotpenguin.com>]
fix ModPerl::RegistryCooker::read_script to handle all possible
errors, previously there was a case where Apache2::Const::OK was
returned on an error. [Eivind Eklund <eeklund@gmail.com>]
a minor compilation warning resolved in modperl_handler_new_from_sv
[Stas]
a minor compilation warning resolved in modperl_gtop_size_string
[Stas]
Prevent direct use of _deprecated_ Apache2::ReadConfig in
<Perl> sections with httpd Alias directives from
incorrectly generating
'The Alias directive in xxxxx at line y will probably never match'
messages.
[Philip M. Gollucci <pgollucci@p6m78g.com>]
Prevent Apache2::PerSections::symdump() from returning invalid
httpd.conf snippets like 'Alias undef'
[Philip M. Gollucci <pgollucci@p6m78g.com>]
Require B-Size 0.9 for Apache2::Status which fixes
Can't call method "script_name" on an undefined value
[Philip M. Gollucci <pgollucci@p6m78g.com>]
-march=pentium4 or anything with an = in it in CCFLAGS or @ARGV
that gets passed to xs/APR/APR/Makefile.PL broke the @ARGV
parsing. I.E. FreeBSD port builds when users had CPUTYPE
set in /etc/make.conf.
[Philip M. Gollucci <pgollucci@p6m7g8.com>]
Fixes to get bleed-ithread (5.9.5+) to comile again.
[Philip M. Gollucci <pgollucci@p6m7g8.com>]
|
|
|
|
2.05 Wed Jan 24 2008
- fix tests failure under perl 5.6.x,
thanks to David Cantrell for cpan testing it
2.04 Wed Jan 23 2008
- use own expand_tabs instead of Text::Tabs
- avoid segfaults when pos() is used inside of regexp
2.03 Wed Nov 7 2007
- delete a lot of unused code
- many micro optimisations
- performance improvements, up to 1.5x in total
- clanups of Makefile, README
|
|
|
|
[Changes for 0.10 - 2007-10-14]
* LICENSING CHANGE: This compilation and all individual files in it
are now under the permissive "MIT" license.
* Modernized the build infrastructure with Module::Install.
* Tidied up source code, test files, and this changelog.
|
|
|
