GNU Wget NEWS -- history of user-visible changes.
Copyright (C) 1997, 1998, 1999, 2000, 2001, 2002, 2003, 2004, 2005,
-2006, 2007 Free Software Foundation, Inc.
+2006, 2007, 2008, 2009, 2010, 2011 Free Software Foundation, Inc.
See the end for copying conditions.
Please send GNU Wget bug reports to <bug-wget@gnu.org>.
\f
-* Changes in Wget 1.11.
+* Changes in Wget 1.13.1
-** The source code has been migrated to Mercurial. The repositories are
-available at http://hg.addictivecode.org/. Prior to this, the source
-code was hosted on Subversion (migrated from the original CVS); you can
-still get access to older tags and branches for Wget in the Subversion
-repository at http://addictivecode.org/svn/wget/.
+** Support HTTP/1.1
+
+** Now by default the GNU TLS library for secure connections, instead of
+ OpenSSL.
+
+** Fix some portability issues.
+
+** Handle properly malformed status line in a HTTP response.
+
+** Ignore zero length domains in $no_proxy.
+
+** Set new cookies after an authorization failure.
+
+** Exit with failure if -k is specified and -O is not a regular file.
+
+** Cope better with unclosed html tags.
+
+** Print diagnostic messages to stderr, not stdout.
+
+** Do not use an additional HEAD request when --content-disposition is used,
+ but use directly GET.
+
+** Report the average transfer speed correctly when multiple URL's are specified
+ and -c influences the transferred data amount.
+
+** GNU TLS backend works again.
+
+** Now --timestamping and --continue works well together.
+
+** By default, on server redirects, use the original URL to get the
+ local file name. Close CVE-2010-2252. This introduces a
+ backward-incompatibility; any script that relies on the old
+ behaviour must use --trust-server-names.
+
+** Fix a problem when -k is used and some URLs are specified trough
+ CSS.
+
+** Convert correctly URLs that need to be encoded to local files when following
+ links.
+
+** Use persistent connections with proxies supporting them.
+
+** Print the total download time as part of the summary for recursive downloads.
+
+** Now it is possible to specify a different startup configuration file trough
+ the --config option.
+
+** Fix an infinite loop with the error '<filename> has sprung into existence'
+ on a network error and -nc is used.
+
+** Now --adjust-extension does not modify the file extension if the file ends
+ in .htm.
+
+** Support HTTP/1.1 307 redirects keep request method.
+
+** Now --no-parent doesn't fetch undesired files if HTTP and HTTPS are used
+ by the same host on different pages.
+
+** Do not attempt to remove the file if it is not in the accept rules but
+ it is the output destination file.
+
+** Introduce `show_all_dns_entries' to print all IP addresses corresponding to
+ a DNS name when it is resolved.
+\f
+* Changes in Wget 1.12
+
+** Mailing list MOVED to bug-wget@gnu.org
+
+** SECURITY FIX: It had been possible to trick Wget into accepting
+SSL certificates that don't match the host name, through the trick of
+embedding NUL characters into the certs' common name. Fixed by Joao
+Ferreira <joao@joaoff.com>.
+
+** Added support for CSS. This includes:
+ - Parsing links from CSS files, and from CSS content found in HTML
+ style tags and attributes.
+ - Supporting conversion of links found within CSS content, when
+ --convert-links is specified.
+ - Ensuring that CSS files end in the ".css" filename extension,
+ when --convert-links is specified.
+
+ CSS support in Wget is thanks to Ted Mielczarek
+ <ted.mielczarek@gmail.com>.
+
+** Added support for Internationalized Resource Identifiers (IRIs, RFC
+3987). When support is enabled (requires libidn and libiconv), links
+with non-ASCII bytes are translated from their source encoding to UTF-8
+before percent-encoding. IRI support was added by Saint Xavier
+<wget@sxav.eu>, as his project for the Google Summer of Code.
-** PATCH file removed; see http://wget.addictivecode.org/PatchGuidelines
-for current information about producing patches for GNU Wget.
+** Wget now provides more sensible exit status codes when downloads
+don't proceed as expected (see the manual).
-** TODO file removed: we use a bugtracker now; see
-http://wget.addictivecode.org/BugTracker. Also,
-http://wget.addictivecode.org/FeatureSpecifications.
+** --default-page option (and associated wgetrc command) added to
+support alternative default names for index.html.
+
+** --ask-password option (and associated wgetrc command) added to
+support password prompts at the console.
+
+** The --input-file option now also handles retrieving links from
+an external file.
+
+** The output generated by the --version option now includes
+information on how it was built, and the set of configure-time options
+that were selected.
+
+** --html-extension has been renamed to --adjust-extension, to reflect
+the fact that it now also applies to CSS content. --html-extension is
+still acceptable, but is now deprecated.
+
+** An "ascii" specifier is now accepted by --restrict-file-names, which
+forces the percent-encoding of all non-ASCII bytes
+
+** Several previously existing, but undocumented .wgetrc options are
+now documented: save_headers, spider, and user_agent,
+auth_no_challenge, and keep_session_cookies. Also added documentation
+for the "lowercase" and "uppercase" values for --restrict-file-names, which had been present since Wget 1.11.
+\f
+* Changes in Wget 1.11.4
+
+** Fixed an issue (apparently a regression) where -O would refuse to
+download when -nc was given, even though the file didn't exist.
+
+** Fixed a situation where Wget could abort with --continue if the
+remote server gives a content-length of zero when the file exists
+locally with content.
+
+** Fixed a crash on some systems, due to Wget casting a pointer-to-long
+to a pointer-to-time_t.
+
+** Translation updates for Catalan.
+\f
+* Changes in Wget 1.11.3
+
+** Downgraded -N with -O to a warning, rather than an error.
+
+** Translation updates
+\f
+* Changes in Wget 1.11.2
+
+** Fixed a problem in authenticating over HTTPS through a proxy.
+(Regression in 1.11 over 1.10.2.)
+
+** The combination of -r or -p with -O, which was disallowed in 1.11,
+has been downgraded to a warning in 1.11.2. (-O and -N, which was never
+meaningful, is still an error.)
+
+** Further improvements to progress bar displays in non-English locales
+(too many spaces could be inserted, causing the display to scroll).
+
+** Successive invocations of Wget on FTP URLS, with --no-remove-listing
+and --continue, was causing Wget to append, rather than replace,
+information in the .listing file, and thereby download the same files
+multiple times. This has been fixed in 1.11.2.
+
+** Wget 1.11 no longer allowed ".." to persist at the beginning of URLs,
+for improved conformance with RFC 3986. However, this behavior presents
+problems for some FTP setups, and so they are now preserved again, for
+FTP URLs only.
+\f
+* Changes in Wget 1.11.1.
+
+** Interrupted downloads no longer result in renaming the file
+(regression in 1.11 over 1.10.2).
+
+** Progress bar now displays correctly in non-English locales (and a
+related assertion failure was fixed).
+
+** Wget no longer issues a GET request over HTTP for files it should
+know it's not going to download (regression in 1.11 over 1.10.2).
+
+** Added option --auth-no-challenge, to support broken pre-1.11
+authentication-before-server-challenge, which turns out to still be
+useful for some limited cases.
+
+** Documentation of accept/reject lists in the manual's "Types of
+Files" section now explains various aspects of their behavior that may
+be surprising, and notes that they may change in the future.
+
+** Documentation of --no-parents now explains how a trailing slash, or
+lack thereof, in the specified URL, will affect behavior.
+\f
+* Changes in Wget 1.11.
** Timestamping now uses the value from the most recent HTTP response,
rather than the first one it got.
-** configure.in now requires autoconf >= 2.61, rather than 2.59.
-
** Authentication information is no longer sent as part of the Referer
header in recursive fetches.
** Added --max-redirect option, allowing the user to specify what should
be the maximum number of HTTP redirects to follow.
-** Wget now saves HTTP downloads using file names specified by the
-`Content-Disposition' header. This is a standard way of specifying the
-file name used by many web dynamically generated pages. For the time
-being, Content-Disposition is not used by default, to avoid the extra
-round-trips incurred (must specify "-e contentdisposition=yes"); this
-may change in a future version. NOTE: This functionality is currently
-considered "experimental", and may not be fully functional.
-
-** The GnuTLS library is now also experimentally supported for https
-downloads. This is still work-in-progress. OpenSSL is still used by
-default; use --with-ssl=gnutls to build with GnuTLS. OpenSSL is still
-required for NTLM authorization to work, but this should eventually
-change. NOTE: Certificate verification is _not_ currently supported:
-this means that you can currently only use GnuTLS to encrypt
-connections, but _not_ to verify that a host is who it claims to be. Use
-of OpenSSL is suggested until this missing feature is implemented.
+** Wget now supports saving HTTP downloads using file names specified by
+the `Content-Disposition' header. This is a standard way of specifying
+the file name used by many web dynamically generated pages. However, the
+current implementation is inefficient, and known to have bugs. It is
+EXPERIMENTAL only, and not enabled by default. Use --content-disposition
+to enable it.
** The new option `--ignore-case' makes Wget ignore case when
matching files, directories, and wildcards. This affects the -X, -I,
broken scripts or Perl modules that unconditionally specify
`--passive-ftp' and your firewall disallows it, you can override them
by replacing wget with a script that execs wget "$@" --no-passive-ftp.
+
+** The source code has been migrated to Mercurial. The repositories are
+available at http://hg.addictivecode.org/. Prior to this, the source
+code was hosted on Subversion (migrated from the original CVS); you can
+still get access to older tags and branches for Wget in the Subversion
+repository at http://addictivecode.org/svn/wget/.
\f
* Changes in Wget 1.10.
** A number of new translation files have been added.
-** New --bind-address / bind_address = <address> option for people on hosts
+** New --bind-address / bind_address = <address> option for people on hosts
bound to multiple IP addresses.
** wget now accepts (illegal per HTTP spec) relative URLs in HTTP redirects.
projects / wget / blobdiff