[ViewVC] Annotation of: cvs/AnyEvent-HTTP/Changes

Revision history for AnyEvent::HTTP

TODO: provide lwp_request function that takes an lwp http requets and returns a http response.
TODO: httpbis: $location = URI->new_abs($location, "$scheme://$host:$port$path_query")->as_string;

2.11 Tue May 10 14:33:28 CEST 2011
        - the keepalive session cache wouldn't take port and scheme into account
          when reusing connection - potentially causing information leaks
          (reported by Nick Kostirya).
        - bump AnyEvent dependency version (reported by Richard Harris).

2.1  Thu Feb 24 13:11:51 CET 2011
        - the keepalive and persistent parameters were actually named
          differently in the code - they now work as documented.
        - fix a bug where callbacks would sometimes never be called when
          the request timeout is near or below the persistent connection
          timeout (testcase by Cindy Wang).
        - destroying the guard would have no effect when a request was
          recursing or being retired.

2.04 Sat Feb 19 07:45:24 CET 2011
        - "proxy => undef" now overrides any global proxy when specified.
        - require scheme in urls, also use a stricter match to match urls,
          leading or trailing garbage is no longer tolerated.
        - EXPERIMENTAL: allow '=' in cookie values.

2.03 Tue Jan 18 18:49:35 CET 2011
        - dummy reupload, file gone from cpan somehow.

2.02 Wed Jan 12 04:29:37 CET 2011
        - do not lowercase cookie names, only parameter names.

2.01 Tue Jan 11 07:38:15 CET 2011
        - add missing dependency on common::sense.
        - add a resume download example.

2.0  Tue Jan  4 09:16:56 CET 2011
        - hopefully fully upgraded to HTTP/1.1.
        - support HTTP/1.1 persistent and HTTP/1.0 keep-alive connections.
        - drop https-proxy-connection support. seems unused and ill-specified.
        - use more differentiated 59x status codes.
        - properly use url (not proxy) hostname to verify server certificate.
        - much improved cookie implementation:
           - properly implement cookie expiry (for new cookies).
           - new function to expire cookies and sessions: cookie_jar_expire.
           - add special exception to parse broken expires= keys in
             set-cookie headers.
           - do not quote cookie values when not strictly necessary, to
             improve compatibility with broken servers.
           - accept and send lots of invalid cookie values exactly as
             they were received - this should not impact valid values.
           - lowercase cookie parameter names for improved compatibility.
           - support the max-age cookie parameter, overrides expires.
           - support cookie dates (and a few others) in parse_date.
           - properly support value-less parameters (e.g. secure, httponly).
        - do not send Host: header in a proxy CONNECT request.
        - use common::sense.
        - lowercase hostnames and schemes.
        - ignore leading zeroes in http version.
        - handle spaces in content-length headers more gracefully.

1.5  Fri Dec 31 04:47:08 CET 2010
        - bugfix: after headers were received, if any error occured the wrong
          (server-sent) Status and Reason fields would be passed to the callback.
        - when an error occurs during transfer, preserve status/reason.
        - add socks4a connect example.
        - new "tcp_connect" parameter.
        - new format_date and parse_date functions.
        - diagnose unexpected eof as such when the length is known.
        - add 205 to the responses without body.

1.46 Mon Sep  6 08:29:34 CEST 2010
        - some (broken) servers differentiate between empty search parts
          and nonexistant search parts, work around this (problem
          analyzed by Sergey Zasenko).
        - possibly increase robustness by always setting an on_error
          callback on the AnyEvent::Handle object (especially in case
          of user errors, such as nehative timeouts).
        - we now always follow 301/302/303 redirects and mutate POST to GET.
        - we now always follow 307 redirects, even for POST.
        - header-less responses are not parsed correctly (at a negative
          speed penatly :).

1.45 Wed Jun 16 21:15:26 CEST 2010
        - fix a bug where the handle would go away directly after a successful
          connect (analyzed and patch by Maxim Dounin).
        - due to popular demand, introduce the Redirect pseudo response header.
        - document URL pseudo-header better.
        - explain how to implement DNS caching.

1.44 Sat Dec  5 16:36:20 CET 2009
        - do not generate content-length on get requests (if the body is empty),
          as there are even more broken servers out there.
        - allow set_proxy to clear the proxy again.
        - set_proxy will now croak on invalid urls.
        - support overriding the Host-header (requested by Tatsuhiko Miyagawa).

1.43 Fri Aug 14 17:02:02 CEST 2009
        - provide on_prepare callback on common request.

1.42 Wed Aug  5 18:43:01 CEST 2009
        - allow suppression of auto-supplied header fields by specifying undef
          (requested by Mr Guest).
        - allow proxy scheme to be missing, as documented
          (reported by Mr Guest).
        - do not follow redirects if we do not have a location header
          (requested by Mr Guest).

1.41 Sat Jul 25 03:27:05 CEST 2009
        - correctly parse completely headerless responses (e.g. by gatling).
          (analysed by Robin Redeker).

1.4  Tue Jul  7 02:14:53 CEST 2009
        - http_request would not instantly clear the connection slot on
          tcp_connect failures, potentially leading to deadlocks.
        - fix a bug where a connection error is wrongly reported
          as EINPROGRESS.
        - new parameters: on_header, on_body, want_body_handle.
        - redirects will be followed when recurse is enabled whether or not
          the body dowload was successful or not.
        - include :port in Host header when given in the url (many sites break
          when it's always there, and many break if it's missing...).
        - pass the empty string, not undef, when there is no body but
          no error occured.
        - allow passing of tls_ctx, predefine two https security profiles.
        - ucfirst all error messages generated internally.
        - include "U" token in User-Agent.
        - document $AnyEvent::HTTP::MAX_PER_HOST.
        - allow empty field names in response headers (microsoft hits. microsoft
          hits. microsoft hits. you die).

1.12 Thu Jun 11 14:45:18 CEST 2009
        - $scheme wasn't optional in the proxy specification (reported by
          Felix Antonius Wilhelm Ostmann).

1.11 Fri Nov 21 09:18:11 CET 2008
        - work around a perl core bug not properly refcounting function arguments,
          causing "200 OK" with random body results (reported by Дмитрий Шалашов).

1.1  Thu Oct 30 04:46:27 CET 2008
        - work around different behaviour of AnyEvent::Handle in TLS mode.
        - cleanup cookie implementation, many examples and comments were
          provided by Дмитрий Шалашов.
        - document the return values of http_* functions better.
        - separate multiple header values by "," not "\x00" (this does not
          break correctly written users of the old API).
        - improve Set-Cookie: parsing.
        - add experimental https-over-http-proxy support.
        - downgrade https-over-https proxy to https-over-http.
        - ignore spurious CR characters in headers, they show up
          in the weirdest of places.
        - ucfirst the request headers, for a slightly less weird look.
        - work around (some) memleaks in perl regarding qr.

1.05 Mon Sep 29 15:49:58 CEST 2008
        - fix a regex when parsing cookie domains
          (patch by Дмитрий Шалашов).

1.04 Thu Jul 24 08:00:46 CEST 2008
        - parse reason-less http status responses.
        - parse more forms of broken location headers.

1.03 Thu Jul  3 03:47:58 CEST 2008
        - fix http_post, which was totally broken (patch by Pedro Melo).
        - do not recurse on POST requests, as per HTTP/1.[01] (this might
          change as the recommendation isn't followed by anybody else).
        - implement preliminary support for 303/307 redirects.

1.02 Thu Jun 12 13:50:08 CEST 2008
        - make the request URL available in the callback of http_request.
        - export http_post, http_head.

1.01 Fri Jun  6 14:56:37 CEST 2008
        - fixed prototypes for http_* functions

1.0  Thu Jun  5 20:41:43 CEST 2008
        - original version, an AnyEvent::AIO clone.
Revision:	1.71
Committed:	Tue May 10 12:33:51 2011 UTC (13 years ago) by root
Branch:	MAIN
CVS Tags:	rel-2_11
Changes since 1.70:	+6 -0 lines
Log Message:	2.11
#	User	Rev	Content
1	root	1.2	Revision history for AnyEvent::HTTP
2	root	1.1
3	root	1.18	TODO: provide lwp_request function that takes an lwp http requets and returns a http response.
4	root	1.68	TODO: httpbis: $location = URI->new_abs($location, "$scheme://$host:$port$path_query")->as_string;
5	root	1.46
6	root	1.71	2.11 Tue May 10 14:33:28 CEST 2011
7			- the keepalive session cache wouldn't take port and scheme into account
8			when reusing connection - potentially causing information leaks
9			(reported by Nick Kostirya).
10			- bump AnyEvent dependency version (reported by Richard Harris).
11
12	root	1.69	2.1 Thu Feb 24 13:11:51 CET 2011
13			- the keepalive and persistent parameters were actually named
14			differently in the code - they now work as documented.
15			- fix a bug where callbacks would sometimes never be called when
16	root	1.70	the request timeout is near or below the persistent connection
17	root	1.69	timeout (testcase by Cindy Wang).
18			- destroying the guard would have no effect when a request was
19			recursing or being retired.
20
21	root	1.68	2.04 Sat Feb 19 07:45:24 CET 2011
22			- "proxy => undef" now overrides any global proxy when specified.
23	root	1.66	- require scheme in urls, also use a stricter match to match urls,
24			leading or trailing garbage is no longer tolerated.
25	root	1.68	- EXPERIMENTAL: allow '=' in cookie values.
26	root	1.66
27	root	1.65	2.03 Tue Jan 18 18:49:35 CET 2011
28			- dummy reupload, file gone from cpan somehow.
29
30	root	1.64	2.02 Wed Jan 12 04:29:37 CET 2011
31			- do not lowercase cookie names, only parameter names.
32
33	root	1.63	2.01 Tue Jan 11 07:38:15 CET 2011
34	root	1.62	- add missing dependency on common::sense.
35	root	1.63	- add a resume download example.
36	root	1.62
37	root	1.59	2.0 Tue Jan 4 09:16:56 CET 2011
38	root	1.48	- hopefully fully upgraded to HTTP/1.1.
39	root	1.59	- support HTTP/1.1 persistent and HTTP/1.0 keep-alive connections.
40			- drop https-proxy-connection support. seems unused and ill-specified.
41	root	1.60	- use more differentiated 59x status codes.
42			- properly use url (not proxy) hostname to verify server certificate.
43	root	1.48	- much improved cookie implementation:
44	root	1.53	- properly implement cookie expiry (for new cookies).
45			- new function to expire cookies and sessions: cookie_jar_expire.
46	root	1.48	- add special exception to parse broken expires= keys in
47			set-cookie headers.
48	root	1.49	- do not quote cookie values when not strictly necessary, to
49			improve compatibility with broken servers.
50	root	1.50	- accept and send lots of invalid cookie values exactly as
51			they were received - this should not impact valid values.
52	root	1.48	- lowercase cookie parameter names for improved compatibility.
53	root	1.60	- support the max-age cookie parameter, overrides expires.
54	root	1.53	- support cookie dates (and a few others) in parse_date.
55	root	1.60	- properly support value-less parameters (e.g. secure, httponly).
56	root	1.57	- do not send Host: header in a proxy CONNECT request.
57			- use common::sense.
58			- lowercase hostnames and schemes.
59			- ignore leading zeroes in http version.
60			- handle spaces in content-length headers more gracefully.
61	root	1.47
62	root	1.46	1.5 Fri Dec 31 04:47:08 CET 2010
63	root	1.45	- bugfix: after headers were received, if any error occured the wrong
64			(server-sent) Status and Reason fields would be passed to the callback.
65			- when an error occurs during transfer, preserve status/reason.
66	root	1.41	- add socks4a connect example.
67	root	1.40	- new "tcp_connect" parameter.
68	root	1.42	- new format_date and parse_date functions.
69	root	1.45	- diagnose unexpected eof as such when the length is known.
70			- add 205 to the responses without body.
71	root	1.37
72	root	1.39	1.46 Mon Sep 6 08:29:34 CEST 2010
73	root	1.38	- some (broken) servers differentiate between empty search parts
74			and nonexistant search parts, work around this (problem
75			analyzed by Sergey Zasenko).
76			- possibly increase robustness by always setting an on_error
77	root	1.39	callback on the AnyEvent::Handle object (especially in case
78			of user errors, such as nehative timeouts).
79			- we now always follow 301/302/303 redirects and mutate POST to GET.
80			- we now always follow 307 redirects, even for POST.
81			- header-less responses are not parsed correctly (at a negative
82			speed penatly :).
83	root	1.38
84	root	1.37	1.45 Wed Jun 16 21:15:26 CEST 2010
85	root	1.38	- fix a bug where the handle would go away directly after a successful
86	root	1.37	connect (analyzed and patch by Maxim Dounin).
87			- due to popular demand, introduce the Redirect pseudo response header.
88			- document URL pseudo-header better.
89			- explain how to implement DNS caching.
90	root	1.30
91	root	1.35	1.44 Sat Dec 5 16:36:20 CET 2009
92			- do not generate content-length on get requests (if the body is empty),
93			as there are even more broken servers out there.
94	root	1.34	- allow set_proxy to clear the proxy again.
95			- set_proxy will now croak on invalid urls.
96	root	1.35	- support overriding the Host-header (requested by Tatsuhiko Miyagawa).
97	root	1.34
98	root	1.33	1.43 Fri Aug 14 17:02:02 CEST 2009
99			- provide on_prepare callback on common request.
100
101	root	1.31	1.42 Wed Aug 5 18:43:01 CEST 2009
102	root	1.61	- allow suppression of auto-supplied header fields by specifying undef
103	root	1.30	(requested by Mr Guest).
104			- allow proxy scheme to be missing, as documented
105			(reported by Mr Guest).
106			- do not follow redirects if we do not have a location header
107			(requested by Mr Guest).
108
109	root	1.29	1.41 Sat Jul 25 03:27:05 CEST 2009
110			- correctly parse completely headerless responses (e.g. by gatling).
111			(analysed by Robin Redeker).
112
113	root	1.28	1.4 Tue Jul 7 02:14:53 CEST 2009
114	root	1.25	- http_request would not instantly clear the connection slot on
115			tcp_connect failures, potentially leading to deadlocks.
116	root	1.28	- fix a bug where a connection error is wrongly reported
117			as EINPROGRESS.
118	root	1.26	- new parameters: on_header, on_body, want_body_handle.
119			- redirects will be followed when recurse is enabled whether or not
120			the body dowload was successful or not.
121	root	1.27	- include :port in Host header when given in the url (many sites break
122			when it's always there, and many break if it's missing...).
123	root	1.26	- pass the empty string, not undef, when there is no body but
124			no error occured.
125			- allow passing of tls_ctx, predefine two https security profiles.
126	root	1.25	- ucfirst all error messages generated internally.
127			- include "U" token in User-Agent.
128	root	1.27	- document $AnyEvent::HTTP::MAX_PER_HOST.
129			- allow empty field names in response headers (microsoft hits. microsoft
130			hits. microsoft hits. you die).
131	root	1.25
132	root	1.24	1.12 Thu Jun 11 14:45:18 CEST 2009
133	root	1.23	- $scheme wasn't optional in the proxy specification (reported by
134			Felix Antonius Wilhelm Ostmann).
135
136	root	1.22	1.11 Fri Nov 21 09:18:11 CET 2008
137			- work around a perl core bug not properly refcounting function arguments,
138			causing "200 OK" with random body results (reported by Дмитрий Шалашов).
139
140	root	1.21	1.1 Thu Oct 30 04:46:27 CET 2008
141	root	1.18	- work around different behaviour of AnyEvent::Handle in TLS mode.
142	root	1.17	- cleanup cookie implementation, many examples and comments were
143			provided by Дмитрий Шалашов.
144			- document the return values of http_* functions better.
145	root	1.19	- separate multiple header values by "," not "\x00" (this does not
146			break correctly written users of the old API).
147			- improve Set-Cookie: parsing.
148			- add experimental https-over-http-proxy support.
149			- downgrade https-over-https proxy to https-over-http.
150			- ignore spurious CR characters in headers, they show up
151			in the weirdest of places.
152			- ucfirst the request headers, for a slightly less weird look.
153	root	1.20	- work around (some) memleaks in perl regarding qr.
154	root	1.17
155	root	1.16	1.05 Mon Sep 29 15:49:58 CEST 2008
156			- fix a regex when parsing cookie domains
157			(patch by Дмитрий Шалашов).
158
159	root	1.15	1.04 Thu Jul 24 08:00:46 CEST 2008
160	root	1.14	- parse reason-less http status responses.
161			- parse more forms of broken location headers.
162
163	root	1.13	1.03 Thu Jul 3 03:47:58 CEST 2008
164	root	1.10	- fix http_post, which was totally broken (patch by Pedro Melo).
165	root	1.13	- do not recurse on POST requests, as per HTTP/1.[01] (this might
166			change as the recommendation isn't followed by anybody else).
167			- implement preliminary support for 303/307 redirects.
168	root	1.10
169	root	1.9	1.02 Thu Jun 12 13:50:08 CEST 2008
170			- make the request URL available in the callback of http_request.
171	root	1.7	- export http_post, http_head.
172
173	root	1.6	1.01 Fri Jun 6 14:56:37 CEST 2008
174	elmex	1.5	- fixed prototypes for http_* functions
175
176	root	1.4	1.0 Thu Jun 5 20:41:43 CEST 2008
177	root	1.3	- original version, an AnyEvent::AIO clone.