blob: 4780505f51f1d0b30966fc7eed037c8b05867286 [file] [log] [blame]
Derek Jones8ede1a22011-10-05 13:34:52 -05001##########
2Change Log
3##########
4
Andrey Andreev44f53fb2018-06-12 16:54:47 +03005Version 3.1.10
6==============
7
8
9
Andrey Andreev3d2073e2018-03-22 16:52:42 +020010Version 3.1.9
11=============
12
Andrey Andreeva9da3dd2018-06-12 16:40:12 +030013Release Date: Jun 12, 2018
Andrey Andreev3d2073e2018-03-22 16:52:42 +020014
Andrey Andreev0a715d62018-04-23 14:33:45 +030015- **Security**
16
17 - Updated :doc:`URL Helper <helpers/url_helper>` function :php:func:`auto_link()` to add ``rel="noopener"`` to generated links in order to prevent tab hijacking.
Andrey Andreeva9da3dd2018-06-12 16:40:12 +030018 - Fixed a possible session fixation vulnerability where the :doc:`Session Library <libraries/sessions>` enabled ``session.use_strict_mode`` but it didn't actually do anything (thanks to Aamer Shah, Prasanna Kumar).
Andrey Andreev0a715d62018-04-23 14:33:45 +030019
Andrey Andreev13265c52018-04-23 14:29:02 +030020- General Changes
21
22 - Updated :doc:`Query Builder <database/query_builder>` method ``limit()`` to allow ``0`` values.
Andrey Andreev4d3fea42018-06-12 16:37:02 +030023 - Updated :doc:`Email Library <libraries/email>` and :doc:`Form Validation Library <libraries/form_validation>` to discard the results of failed ``idn_to_ascii()`` calls while validating e-mail addresses.
Andrey Andreev3d2073e2018-03-22 16:52:42 +020024
Andrey Andreev68b0e082018-04-13 13:08:52 +030025Bug fixes for 3.1.9
26-------------------
27
28- Fixed a regression (#5448) - :doc:`Query Builder <database/query_builder>` methods ``like()``, ``or_like()`` (and siblings) didn't apply *dbprefix* or identifier escaping.
Andrey Andreevd85c0482018-04-14 16:50:02 +030029- Fixed a regression (#5462) - :doc:`Query Builder <database/query_builder>` methods ``like()``, ``or_like()`` (and siblings) produced incorrect SQL syntax when used with ``'before'`` as the third parameter.
Andrey Andreevd248db42018-06-01 17:51:29 +030030- Fixed a bug (#5516) - :doc:`HTML Helper <helpers/html_helper>` functions :php:func:`img()`, :php:func:`link_tag()` would output results with double slashes if a prefix slash was included in their path inputs.
Andrey Andreev68b0e082018-04-13 13:08:52 +030031
Andrey Andreev5a0f04e2018-01-13 14:01:06 +020032Version 3.1.8
33=============
34
Andrey Andreevb12fbad2018-03-22 16:44:41 +020035Release Date: Mar 22, 2018
Andrey Andreev5a0f04e2018-01-13 14:01:06 +020036
Andrey Andreeva911daa2018-01-31 23:58:39 +020037- **Security**
38
Andrey Andreev3d204b62018-03-10 02:40:22 +020039 - Updated :doc:`Security Library <libraries/security>` method ``xss_clean()`` to also filter JavaScript tag functions.
Andrey Andreevbcce0a12018-03-15 16:48:51 +020040 - Fixed a bug where :doc:`Security Library <libraries/security>` method ``xss_clean()`` didn't check for parentheses around JavaScript's ``document``.
Andrey Andreeva911daa2018-01-31 23:58:39 +020041
Andrey Andreev329dd032018-01-22 10:54:10 +020042- General Changes
43
44 - Updated :doc:`Email Library <libraries/email>` to always negotiate between TLS 1.0, 1.1, 1.2 when possible (PHP 5.6+) for SMTP connections.
Andrey Andreev2f1fc712018-02-28 22:33:36 +020045 - Updated :doc:`Database Library <database/index>` method ``version()`` to exclude suffixes to the main version numbers with the 'postgre' driver.
Andrey Andreev221c0952018-01-22 10:29:19 +020046
47Bug fixes for 3.1.8
48-------------------
49
50- Fixed a bug where :doc:`Form Validation Library <libraries/form_validation>`, :doc:`Email Library <libraries/email>` tried to use ``INTL_IDNA_VARIANT_UTS46`` when it was undeclared.
Andrey Andreev7dd6f142018-01-30 15:08:21 +020051- Fixed a bug where :doc:`Query Builder <database/query_builder>` methods ``where()``, ``having()`` treated values passed to them as arbitrary SQL.
Andrey Andreev2f1fc712018-02-28 22:33:36 +020052- Fixed a bug (#5423) - :doc:`Database Library <database/index>` method ``insert_id()`` failed due to incorrect server version parsing with the 'postgre' driver.
Andrey Andreev8ff2b102018-02-28 22:44:09 +020053- Fixed a bug (#5425) - :doc:`XML-RPC Library <libraries/xmlrpc>` produced an error message related to ``count()`` on PHP 7.2.
Andrey Andreevdc1d71c2018-03-10 02:12:18 +020054- Fixed a bug (#5434) - :doc:`Image Manipulation Library <libraries/image_lib>` attempted to ``chmod()`` while rendering images with the ``dynamic_output`` option.
Andrey Andreev6efd42e2018-03-15 16:24:42 +020055- Fixed a bug (#5435) - :doc:`Database Results <database/results>` method ``field_data()`` hid info about one field if ``limit()`` was previously used with the 'oci8' driver.
Andrey Andreev5a0f04e2018-01-13 14:01:06 +020056
Andrey Andreev4131d422017-09-25 19:47:49 +030057Version 3.1.7
58=============
59
Andrey Andreevf0b97352018-01-13 13:54:38 +020060Release Date: Jan 13, 2018
Andrey Andreev4131d422017-09-25 19:47:49 +030061
Andrey Andreevd282d072017-10-16 11:05:58 +030062- General Changes
63
Andrey Andreev4541bf92017-11-09 17:27:59 +020064 - Updated :doc:`Form Validation Library <libraries/form_validation>` rule ``valid_email`` to use ``INTL_IDNA_VARIANT_UTS46`` for non-ASCII domain names.
65 - Updated :doc:`Email Library <libraries/email>` to use ``INTL_IDNA_VARIANT_UTS46`` for non-ASCII domain names.
Andrey Andreevc9420842017-11-10 15:12:04 +020066 - Updated :doc:`Loader Library <libraries/loader>` method ``model()`` to log both ``CI_Model`` class loading and individual models' initialization.
Andrey Andreevcf0e3e32017-11-28 13:16:48 +020067 - Updated :doc:`Pagination Library <libraries/pagination>` to preserve previously set attributes while calling ``initialize()``.
Andrey Andreev97e50f72018-01-05 17:32:38 +020068 - Updated :doc:`Cache Library <libraries/caching>` to automatically add items to cache on ``increment()``, ``decrement()`` calls for missing keys.
Andrey Andreev44aa1ab2017-11-07 15:42:53 +020069 - Deprecated usage of :doc:`CAPTCHA Helper <helpers/captcha_helper>` function :php:func:`create_captcha()` with parameters other than ``$data``.
Andrey Andreevd282d072017-10-16 11:05:58 +030070
Andrey Andreeva9194652017-09-27 18:57:46 +030071Bug fixes for 3.1.7
72-------------------
73
74- Fixed a regression (#5276) - :doc:`Database Utilities <database/utilities>` method ``backup()`` generated incorrect ``INSERT`` statements with the 'mysqli' driver.
75- Fixed a regression where :doc:`Database Results <database/results>` method ``field_data()`` returned incorrect type names.
Andrey Andreev6b08edf2017-09-29 12:04:38 +030076- Fixed a bug (#5278) - :doc:`URL Helper <helpers/url_helper>` function :php:func:`auto_link()` didn't detect trailing slashes in URLs.
Andrey Andreev9bba3ae2017-10-03 14:21:36 +030077- Fixed a regression (#5282) - :doc:`Query Builder <database/query_builder>` method ``count_all_results()`` breaks ``ORDER BY`` clauses for subsequent queries.
Andrey Andreevfa2a0c52017-10-13 17:04:35 +030078- Fixed a bug (#5279) - :doc:`Query Builder <database/query_builder>` didn't account for already escaped identifiers while applying database name prefixes.
Andrey Andreev8c9e5102017-11-10 15:02:42 +020079- Fixed a bug (#5331) - :doc:`URL Helper <helpers/url_helper>` function :php:func:`auto_link()` converted e-mail addresses starting with 'www.' to both "url" and "email" links.
Andrey Andreev9e2dcd42017-11-29 12:59:45 +020080- Fixed a bug where ``$config['allow_get_array']`` defaulted to ``FALSE`` if it didn't exist in the config file.
Andrey Andreev31854472018-01-12 12:39:29 +020081- Fixed a bug (#5379) - :doc:`Session Library <libraries/sessions>` would incorrectly fail to obtain a lock that it already has on PHP 7 with the 'memcached' driver.
Andrey Andreev4131d422017-09-25 19:47:49 +030082
Andrey Andreev47f540e2017-06-19 11:38:25 +030083Version 3.1.6
84=============
85
Andrey Andreevcf728702017-09-25 19:37:44 +030086Release Date: Sep 25, 2017
Andrey Andreev47f540e2017-06-19 11:38:25 +030087
Andrey Andreev88c1a592017-09-25 14:39:34 +030088- **Security**
89
90 - Fixed a potential object injection in :doc:`Cache Library <libraries/caching>` 'apc' driver when ``save()`` is used with ``$raw = TRUE`` (thanks to Tomas Bortoli).
91
Andrey Andreev93d759d2017-07-06 11:54:16 +030092- General Changes
93
Andrey Andreev88c1a592017-09-25 14:39:34 +030094 - Deprecated :doc:`Cache Library Library <libraries/caching>` driver 'apc'.
Andrey Andreev93d759d2017-07-06 11:54:16 +030095 - Updated the :doc:`Session Library <libraries/sessions>` 'redis', 'memcached' drivers to reduce the potential of a locking race conditions.
96
Andrey Andreev47f540e2017-06-19 11:38:25 +030097
Andrey Andreev894a3f22017-06-27 16:31:17 +030098Bug fixes for 3.1.6
99-------------------
100
101- Fixed a bug (#5164) - :doc:`Loader Library <libraries/loader>` method ``library()`` ignored requests to load libraries previously assigned to super-object properties named differently than the library name.
Andrey Andreev59bae572017-07-03 14:13:08 +0300102- Fixed a bug (#5168) - :doc:`Query Builder <database/query_builder>` method ``count_all_results()`` produced erroneous queries on Microsoft SQL Server when ``ORDER BY`` clauses are cached.
Andrey Andreeve5b9f662017-07-10 14:42:14 +0300103- Fixed a bug (#5128) - :doc:`Profiler <general/profiling>` didn't wrap ``$_SESSION`` and configuration arrays in ``<pre>`` tags.
Andrey Andreev29740e42017-07-14 13:08:35 +0300104- Fixed a bug (#5183) - :doc:`Database Library <database/index>` method ``is_write_type()`` didn't return TRUE for ``MERGE`` statements.
Andrey Andreev6cab7892017-07-17 13:14:00 +0300105- Fixed a bug where :doc:`Image Manipulation Library <libraries/image_lib>` didn't escape image source paths passed to NetPBM as shell arguments.
Andrey Andreev613b8982017-08-25 13:24:51 +0300106- Fixed a bug (#5236) - :doc:`Query Builder <database/query_builder>` methods ``limit()``, ``offset()`` break SQL Server 2005, 2008 queries with ``"<tablename>".*`` in the ``SELECT`` clause.
Andrey Andreevc4e79992017-08-31 16:05:37 +0300107- Fixed a bug (#5243) - :doc:`Database Library <database/index>` method ``version()`` didn't work with the 'pdo/dblib' driver.
Andrey Andreev5e88ea52017-09-04 15:13:37 +0300108- Fixed a bug (#5246) - :doc:`Database transactions <database/transactions>` status wasn't reset unless ``trans_complete()`` was called.
Andrey Andreev9385cfe2017-09-13 13:17:28 +0300109- Fixed a bug (#5260) - :doc:`Database Utilities <database/utilities>` method ``backup()`` generated incorrect ``INSERT`` statements with the 'mysqli' driver.
110- Fixed a bug where :doc:`Database Results <database/results>` method ``field_data()`` didn't parse field types with the 'mysqli' driver.
Andrey Andreev894a3f22017-06-27 16:31:17 +0300111
Andrey Andreevf83d10b2017-03-20 17:55:38 +0200112Version 3.1.5
113=============
114
Andrey Andreev5b0e1f22017-06-19 11:29:39 +0300115Release Date: Jun 19, 2017
Andrey Andreevf83d10b2017-03-20 17:55:38 +0200116
Andrey Andreeved1a0452017-06-19 08:25:23 +0300117- **Security**
118
119 - :doc:`Form Validation Library <libraries/form_validation>` rule ``valid_email`` could be bypassed if ``idn_to_ascii()`` is available.
120
Andrey Andreev26ba6942017-05-25 11:55:11 +0300121- General Changes
122
123 - Updated :doc:`Form Helper <helpers/form_helper>` function :php:func:`form_label()` to accept HTML attributes as a string.
124
Andrey Andreevbdcafdf2017-03-28 17:31:09 +0300125Bug fixes for 3.1.5
126-------------------
127
128- Fixed a bug (#5070) - :doc:`Email Library <libraries/email>` didn't properly detect 7-bit encoding.
Andrey Andreevc94b2442017-04-18 10:53:45 +0300129- Fixed a bug (#5084) - :doc:`XML-RPC Library <libraries/xmlrpc>` errored because of a variable name typo.
Andrey Andreeve6682fc2017-05-09 09:46:40 +0300130- Fixed a bug (#5108) - :doc:`Inflector Helper <helpers/inflector_helper>` function :php:func:`singular()` didn't properly handle 'quizzes'.
Andrey Andreevab0010f2017-05-25 12:14:41 +0300131- Fixed a regression (#5131) - private controller methods triggered PHP errors instead of a 404 response.
Andrey Andreev7ff61362017-06-13 13:26:31 +0300132- Fixed a bug (#5150) - :doc:`Database Forge <database/forge>` method ``modify_column()`` triggered an error while renaming columns with the 'oci8', 'pdo/oci' drivers.
Andrey Andreevda6ac582017-06-15 14:24:51 +0300133- Fixed a bug (#5155) - :doc:`Query Builder <database/query_builder>` method ``count_all_results()`` returned incorrect result for queries using ``LIMIT``, ``OFFSET``.
Andrey Andreevf83d10b2017-03-20 17:55:38 +0200134
Andrey Andreev76576002017-01-09 18:55:03 +0200135Version 3.1.4
136=============
137
Andrey Andreev5b0e1f22017-06-19 11:29:39 +0300138Release Date: Mar 20, 2017
Andrey Andreev76576002017-01-09 18:55:03 +0200139
Andrey Andreevf5652122017-01-19 15:17:00 +0200140- **Security**
141
Andrey Andreevdf33ec22017-03-20 17:43:58 +0200142 - Fixed a header injection vulnerability in :doc:`common function <general/common_functions>` :php:func:`set_status_header()` under Apache (thanks to Guillermo Caminer from `Flowgate <https://flowgate.net/>`_).
Andrey Andreevf5652122017-01-19 15:17:00 +0200143 - Fixed byte-safety issues in :doc:`Encrypt Library <libraries/encrypt>` (DEPRECATED) when ``mbstring.func_overload`` is enabled.
144 - Fixed byte-safety issues in :doc:`Encryption Library <libraries/encryption>` when ``mbstring.func_overload`` is enabled.
Andrey Andreev25461d82017-01-19 15:42:43 +0200145 - Fixed byte-safety issues in :doc:`compatibility functions <general/compatibility_functions>` ``password_hash()``, ``hash_pbkdf2()`` when ``mbstring.func_overload`` is enabled.
Andrey Andreevdf33ec22017-03-20 17:43:58 +0200146 - Updated :doc:`Encrypt Library <libraries/encrypt>` (DEPRECATED) to call ``mcrypt_create_iv()`` with ``MCRYPT_DEV_URANDOM``.
Andrey Andreevf5652122017-01-19 15:17:00 +0200147
Andrey Andreev8f9ab652017-01-10 12:30:38 +0200148- General Changes
149
150 - Updated the :doc:`Image Manipulation Library <libraries/image_lib>` to work-around an issue with some JPEGs when using GD.
151
Andrey Andreevfa986fe2017-01-10 12:22:05 +0200152Bug fixes for 3.1.4
153-------------------
154
155- Fixed a regression (#4975) - :doc:`Loader Library <libraries/loader>` couldn't handle objects passed as view variables.
Andrey Andreev167c2952017-01-11 17:07:02 +0200156- Fixed a bug (#4977) - :doc:`Loader Library <libraries/loader>` method ``helper()`` could accept any character as a filename extension separator.
Andrey Andreevf44c93f2017-01-11 21:47:21 +0200157- Fixed a regression where the :doc:`Session Library <libraries/sessions>` would fail on a ``session_regenerate_id(TRUE)`` call with the 'database' driver.
Andrey Andreev2649e6e2017-01-17 12:47:50 +0200158- Fixed a bug (#4987) - :doc:`Query Builder <database/query_builder>` caching didn't keep track of table aliases.
Andrey Andreevf5652122017-01-19 15:17:00 +0200159- Fixed a bug where :doc:`Text Helper <helpers/text_helper>` function ``ascii_to_entities()`` wasn't byte-safe when ``mbstring.func_overload`` is enabled.
Andrey Andreevc0c74d52017-01-19 15:26:35 +0200160- Fixed a bug where ``CI_Log``, ``CI_Output``, ``CI_Email`` and ``CI_Zip`` didn't handle strings in a byte-safe manner when ``mbstring.func_overload`` is enabled.
161- Fixed a bug where :doc:`Session Library <libraries/sessions>` didn't read session data in a byte-safe manner when ``mbstring.func_overload`` is enabled.
Andrey Andreevdba035d2017-01-23 12:01:32 +0200162- Fixed a bug (#4990) - :doc:`Profiler <general/profiling>` didn't close ``<pre>`` tags it generated.
163- Fixed a bug (#4990) - :doc:`Profiler <general/profiling>` didn't HTML-escape quotes for ``$_SESSION`` variables.
Andrey Andreev422b8892017-02-01 14:36:49 +0200164- Fixed a bug where :doc:`Input Library <libraries/input>` method ``set_cookie()`` didn't allow its *httponly* and *secure* parameters to be overriden to ``FALSE``.
Andrey Andreev7173c962017-02-06 10:37:50 +0200165- Fixed a bug (#5006) - :doc:`common function <general/common_functions>` :php:func:`get_mimes()` didn't load *application/config/mimes.php* if an environment specific config exists.
166- Fixed a bug (#5006) - :doc:`common function <general/common_functions>` :php:func:`remove_invisible_characters()` didn't remove URL-encoded ``0x7F``.
Andrey Andreevcdf1bfb2017-02-20 11:50:12 +0200167- Fixed a bug (#4815) - :doc:`Database Library <database/index>` stripped URL-encoded sequences while escaping strings with the 'mssql' driver.
Andrey Andreev356bc662017-03-06 14:39:28 +0200168- Fixed a bug (#5044) - :doc:`HTML Helper <helpers/html_helper>` function :php:func:`img()` didn't accept ``data:`` URI schemes for the image source.
Andrey Andreevea073522017-03-14 18:42:12 +0200169- Fixed a bug (#5050) - :doc:`Database Library <database/index>` tried to access an undefined property in a number of error handling cases.
Andrey Andreev62b655b2017-03-20 09:14:14 +0200170- Fixed a bug (#5057) - :doc:`Database <database/index>` driver 'postgre' didn't actually apply extra options (such as 'connect_timeout') to its DSN.
Andrey Andreev76576002017-01-09 18:55:03 +0200171
Andrey Andreev6488fc72016-10-31 09:38:25 +0200172Version 3.1.3
173=============
174
Andrey Andreev52ba26b2017-01-09 16:28:56 +0200175Release Date: Jan 09, 2017
Andrey Andreev6488fc72016-10-31 09:38:25 +0200176
Andrey Andreev2ab1c192017-01-04 15:26:35 +0200177- **Security**
178
179 - Fixed an XSS vulnerability in :doc:`Security Library <libraries/security>` method ``xss_clean()``.
Andrey Andreevec8dbbb2017-01-04 17:01:44 +0200180 - Fixed a possible file inclusion vulnerability in :doc:`Loader Library <libraries/loader>` method ``vars()``.
Andrey Andreev61fd9242017-01-06 11:47:34 +0200181 - Fixed a possible remote code execution vulnerability in the :doc:`Email Library <libraries/email>` when 'mail' or 'sendmail' are used (thanks to Paul Buonopane from `NamePros <https://www.namepros.com/>`_).
Andrey Andreev5a2390d2017-01-04 16:01:27 +0200182 - Added protection against timing side-channel attacks in :doc:`Security Library <libraries/security>` method ``csrf_verify()``.
Andrey Andreevcfd52ed2017-01-04 16:58:08 +0200183 - Added protection against BREACH attacks targeting the CSRF token field generated by :doc:`Form Helper <helpers/form_helper>` function :php:func:`form_open()`.
Andrey Andreev2ab1c192017-01-04 15:26:35 +0200184
Andrey Andreev610be9d2016-11-23 13:40:16 +0200185- General Changes
186
Andrey Andreev25aab832016-12-14 13:04:40 +0200187 - Deprecated ``$config['allow_get_array']``.
188 - Deprecated ``$config['standardize_newlines']``.
Andrey Andreev610be9d2016-11-23 13:40:16 +0200189 - Deprecated :doc:`Date Helper <helpers/date_helper>` function :php:func:`nice_date()`.
190
Andrey Andreev6488fc72016-10-31 09:38:25 +0200191Bug fixes for 3.1.3
192-------------------
193
Andrey Andreev2c9fa802016-11-21 11:53:53 +0200194- Fixed a bug (#4886) - :doc:`Database Library <database/index>` didn't differentiate bind markers inside double-quoted strings in queries.
Andrey Andreev14a6c2e2016-10-31 10:04:17 +0200195- Fixed a bug (#4890) - :doc:`XML-RPC Library <libraries/xmlrpc>` didn't work on PHP 7.
Andrey Andreev7cc08232016-10-31 16:19:46 +0200196- Fixed a regression (#4887) - :doc:`File Uploading Library <libraries/file_uploading>` triggered fatal errors due to numerous PHP distribution channels (XAMPP and cPanel confirmed) explicitly disabling ext/fileinfo by default.
Andrey Andreev3a89d3c2016-11-03 16:26:31 +0200197- Fixed a bug (#4679) - :doc:`Input Library <libraries/input>` method ``ip_address()`` didn't properly resolve ``$config['proxy_ips']`` IPv6 addresses.
Andrey Andreevbe8bd922016-11-07 12:31:31 +0200198- Fixed a bug (#4902) - :doc:`Image Manipulation Library <libraries/image_lib>` processing via ImageMagick didn't work.
Andrey Andreev4015f9b2016-11-14 10:22:59 +0200199- Fixed a bug (#4905) - :doc:`Loader Library <libraries/loader>` didn't take into account possible user-provided directory paths when loading helpers.
Andrey Andreev45023e52016-11-23 13:40:52 +0200200- Fixed a bug (#4916) - :doc:`Session Library <libraries/sessions>` with ``sess_match_ip`` enabled was unusable for IPv6 clients when using the 'database' driver on MySQL 5.7.5+.
Andrey Andreev820d9cd2016-11-23 13:27:42 +0200201- Fixed a bug (#4917) - :doc:`Date Helper <helpers/date_helper>` function :php:func:`nice_date()` didn't handle YYYYMMDD inputs properly.
Andrey Andreev62769262016-11-29 15:30:30 +0200202- Fixed a bug (#4923) - :doc:`Session Library <libraries/sessions>` could execute an erroneous SQL query with the 'database' driver, if the lock attempt times out.
Andrey Andreeve3779102016-12-01 13:48:58 +0200203- Fixed a bug (#4927) - :doc:`Output Library <libraries/output>` method ``get_header()`` returned the first matching header, regardless of whether it would be replaced by a second ``set_header()`` call.
Andrey Andreev8db01f12016-12-01 14:06:57 +0200204- Fixed a bug (#4844) - :doc:`Email Library <libraries/email>` didn't apply ``escapeshellarg()`` to the while passing the Sendmail ``-f`` parameter through ``popen()``.
Andrey Andreev5d6e77b2016-12-01 17:14:35 +0200205- Fixed a bug (#4928) - the bootstrap file didn't check if *config/constants.php* exists before trying to load it.
Andrey Andreev961271d2016-12-09 12:48:57 +0200206- Fixed a bug (#4937) - :doc:`Image Manipulation Library <libraries/image_lib>` method ``initialize()`` didn't translate *new_image* inputs to absolute paths.
Andrey Andreev4f52ca92016-12-12 11:31:39 +0200207- Fixed a bug (#4941) - :doc:`Query Builder <database/query_builder>` method ``order_by()`` didn't work with 'RANDOM' under the 'pdo/sqlite' driver.
Andrey Andreev8338bbb2016-12-12 14:17:52 +0200208- Fixed a regression (#4892) - :doc:`Query Builder <database/query_builder>` method ``update_batch()`` didn't properly handle identifier escaping.
Andrey Andreev593ce682017-01-03 12:40:32 +0200209- Fixed a bug (#4953) - :doc:`Database Forge <database/forge>` method ``create_table()`` didn't update an internal tables list cache if it exists but is empty.
Andrey Andreev6e8a3e92017-01-03 13:19:55 +0200210- Fixed a bug (#4958) - :doc:`Query Builder <database/query_builder>` method ``count_all_results()`` didn't take into account cached ``ORDER BY`` clauses.
Andrey Andreev2fa068d2017-01-03 18:15:30 +0200211- Fixed a bug (#4804) - :doc:`Query Builder <database/query_builder>` method ``insert_batch()`` could fail if the input array pointer was modified.
Andrey Andreev27a46292017-01-06 11:40:12 +0200212- Fixed a bug (#4962) - :doc:`Database Force <database/forge>` method ``alter_table()`` would fail with the 'oci8' driver.
Andrey Andreev3275a4e2017-01-06 13:24:46 +0200213- Fixed a bug (#4457) - :doc:`Image Manipulation Library <libraries/image_lib>` method ``get_image_properties()`` didn't detect invalid images.
Andrey Andreeve898e562017-01-06 13:50:11 +0200214- Fixed a bug (#4765) - :doc:`Email Library <libraries/email>` didn't send the ``User-Agent`` header without a prior call to ``clear()``.
Andrey Andreev6488fc72016-10-31 09:38:25 +0200215
Andrey Andreev09841252016-10-27 15:10:30 +0300216Version 3.1.2
217=============
218
Andrey Andreeva1f830d2016-10-28 17:59:47 +0300219Release Date: Oct 28, 2016
Andrey Andreev09841252016-10-27 15:10:30 +0300220
221- **Security**
222
Andrey Andreev57fa1432016-10-28 17:46:31 +0300223 - Fixed a number of new vulnerabilities in :doc:`Security Library <libraries/security>` method ``xss_clean()``.
Andrey Andreev09841252016-10-27 15:10:30 +0300224
Andrey Andreev7bc88232016-10-27 15:41:23 +0300225- General Changes
226
Andrey Andreev6e2e9e92016-12-14 13:05:48 +0200227 - Allowed PHP 4-style constructors (``Matching_name::Matching_name()`` methods) to be used as routes, if there's a ``__construct()`` to override them.
Andrey Andreev7bc88232016-10-27 15:41:23 +0300228
Andrey Andreev2f760872016-10-27 16:39:12 +0300229Bug fixes for 3.1.2
230-------------------
231
Andrey Andreev2b9d88c2016-10-27 16:47:57 +0300232- Fixed a regression (#4874) - :doc:`Session Library <libraries/sessions>` didn't take into account ``session.hash_bits_per_character`` when validating session IDs.
Andrey Andreev0c23e912016-10-27 16:55:19 +0300233- Fixed a bug (#4871) - :doc:`Query Builder <database/query_builder>` method ``update_batch()`` didn't properly handle identifier escaping.
Andrey Andreevbe4bab92016-10-28 12:50:03 +0300234- Fixed a bug (#4884) - :doc:`Query Builder <database/query_builder>` didn't properly parse field names ending in 'is' when used inside WHERE and HAVING statements.
Andrey Andreevf5652122017-01-19 15:17:00 +0200235- Fixed a bug where ``CI_Log``, ``CI_Output``, ``CI_Email`` and ``CI_Zip`` didn't handle strings in a byte-safe manner when ``mbstring.func_overload`` is enabled.
Andrey Andreev2f760872016-10-27 16:39:12 +0300236
Andrey Andreev0b954022016-07-26 20:52:30 +0300237Version 3.1.1
238=============
239
Andrey Andreev378627b2016-10-22 16:48:35 +0300240Release Date: Oct 22, 2016
Andrey Andreev0b954022016-07-26 20:52:30 +0300241
Andrey Andreeveea02de2016-09-27 14:59:37 +0300242- **Security**
243
244 - Fixed a flaw in :doc:`Security Library <libraries/security>` method ``entity_decode()`` (used by ``xss_clean()``) that affects HTML 5 entities when using PHP 5.3.
245
Andrey Andreev69070512016-08-19 19:21:36 +0300246- General Changes
Andrey Andreev0b954022016-07-26 20:52:30 +0300247
Andrey Andreev69070512016-08-19 19:21:36 +0300248 - Added ``E_PARSE`` to the list of error levels detected by the shutdown handler.
Andrey Andreevf2f6d8a2016-10-11 16:00:57 +0300249 - Updated :doc:`Inflector Helper <helpers/inflector_helper>` :php:func:`is_countable()` with more words.
250 - Updated :doc:`common function <general/common_functions>` :php:func:`set_status_header()` with new status codes from IETF RFCs
Andrey Andreev6c33f222016-10-22 17:08:13 +0300251 `2817 <https://tools.ietf.org/html/rfc2817>`_ (426)
Andrey Andreevf2f6d8a2016-10-11 16:00:57 +0300252 and `6585 <https://tools.ietf.org/html/rfc6585>`_ (428, 429, 431, 511).
Andrey Andreev0b954022016-07-26 20:52:30 +0300253
254Bug fixes for 3.1.1
255-------------------
256
Andrey Andreev17485672016-07-28 15:16:38 +0300257- Fixed a bug (#4732) - :doc:`Session Library <libraries/sessions>` triggered errors while writing data for a newly-created sessions with the 'memcached' driver.
Andrey Andreevb9f53a82016-07-29 11:31:05 +0300258- Fixed a regression (#4736) - :doc:`Image Manipulation Library <libraries/image_lib>` processing via ImageMagick didn't work.
Andrey Andreevacc64812016-07-29 11:42:28 +0300259- Fixed a bug (#4737) - :doc:`Query Builder <database/query_builder>` didn't add an ``OFFSET`` when ``LIMIT`` is zero or unused.
Andrey Andreev9b0f5fa2016-08-01 13:54:06 +0300260- Fixed a regression (#4739) - :doc:`Email Library <libraries/email>` doesn't properly separate attachment bodies from headers.
Andrey Andreev7e6db8e2016-08-10 13:23:58 +0300261- Fixed a bug (#4754) - :doc:`Unit Testing Library <libraries/unit_testing>` method ``result()`` didn't translate ``res_datatype``.
vkeranov255e4c02016-10-23 20:47:32 +0300262- Fixed a bug (#4759) - :doc:`Form Validation <libraries/form_validation>`, :doc:`Trackback <libraries/trackback>` and :doc:`XML-RPC <libraries/xmlrpc>` libraries treated URI schemes in a case-sensitive manner.
Andrey Andreev15a5e0d2016-08-11 15:17:43 +0300263- Fixed a bug (#4762) - :doc:`Cache Library <libraries/caching>` 'file' driver method ``get_metadata()`` checked TTL time against ``mtime`` instead of the cache item's creation time.
Andrey Andreev549a6012016-08-22 13:18:36 +0300264- Fixed a bug where :doc:`File Uploading Library <libraries/file_uploading>` generated error messages on PHP 7.1.
Andrey Andreev5ecf4f92016-08-22 14:16:33 +0300265- Fixed a bug (#4780) - :doc:`compatibility function <general/compatibility_functions>` ``hex2bin()`` didn't reject inputs of type "resource".
Andrey Andreev0abc0df2016-08-29 15:15:49 +0300266- Fixed a bug (#4787) - :doc:`Form Validation Library <libraries/form_validation>` method ``valid_email()`` triggered ``E_WARNING`` when input emails have empty domain names.
Andrey Andreev8c61ec22016-09-09 15:35:26 +0300267- Fixed a bug (#4805) - :doc:`Database <database/index>` driver 'mysqli' didn't use the ``MYSQLI_CLIENT_SSL_DONT_VERIFY_SERVER_CERT`` flag properly.
Andrey Andreev442ea682016-09-16 11:51:25 +0300268- Fixed a bug (#4808) - :doc:`Database <database/index>` method ``is_write_type()`` only looked at the first line of a queries using ``RETURNING`` with the 'postgre', 'pdo/pgsql', 'odbc' and 'pdo/odbc' drivers.
Andrey Andreev0a4dd842016-09-16 12:06:40 +0300269- Fixed a bug where :doc:`Query Builder <database/query_builder>` method ``insert_batch()`` tried to execute an unsupported SQL query with the 'ibase' and 'pdo/firebird' drivers.
Andrey Andreev8a15f5a2016-09-27 14:12:05 +0300270- Fixed a bug (#4809) - :doc:`Database <database/index>` driver 'pdo/mysql' didn't turn off ``AUTOCOMMIT`` when starting a transaction.
Andrey Andreev386e8e02016-09-30 12:26:27 +0300271- Fixed a bug (#4822) - :doc:`CAPTCHA Helper <helpers/captcha_helper>` didn't clear expired PNG images.
Andrey Andreevf5652122017-01-19 15:17:00 +0200272- Fixed a bug (#4823) - :doc:`Session Library <libraries/sessions>` 'files' driver could enter an infinite loop if ``mbstring.func_overload`` is enabled.
Andrey Andreevda270b22016-10-17 18:22:43 +0300273- Fixed a bug (#4851) - :doc:`Database Forge <database/forge>` didn't quote schema names passed to its ``create_database()`` method.
Andrey Andreeva9e57732016-10-20 11:51:50 +0300274- Fixed a bug (#4863) - :doc:`HTML Table Library <libraries/table>` method ``set_caption()`` was missing method chaining support.
Andrey Andreevdc44b922016-10-20 11:56:20 +0300275- Fixed a bug (#4843) - :doc:`XML-RPC Library <libraries/xmlrpc>` client class didn't set a read/write socket timeout.
Andrey Andreev4ffe6342016-10-21 16:30:31 +0300276- Fixed a bug (#4865) - uncaught exceptions didn't set the HTTP Response status code to 500 unless ``display_errors`` was turned On.
Andrey Andreev6c6ee1a2016-10-22 16:33:06 +0300277- Fixed a bug (#4830) - :doc:`Session Library <libraries/sessions>` didn't take into account the new session INI settings in PHP 7.1.
Andrey Andreev0b954022016-07-26 20:52:30 +0300278
Claudio Galdiolo606ad652016-07-07 15:32:12 -0400279Version 3.1.0
Andrey Andreeveb373a12016-03-21 18:30:06 +0200280=============
281
Claudio Galdiolo606ad652016-07-07 15:32:12 -0400282Release Date: July 26, 2016
Andrey Andreeveb373a12016-03-21 18:30:06 +0200283
Andrey Andreevedd347f2016-07-26 19:45:17 +0300284- **Security**
285
286 - Fixed an SQL injection in the 'odbc' database driver.
Andrey Andreevf2f6d8a2016-10-11 16:00:57 +0300287 - Updated :php:func:`set_realpath()` :doc:`Path Helper <helpers/path_helper>` function to filter-out ``php://`` wrapper inputs.
Andrey Andreevbcfe4612016-07-26 20:34:30 +0300288 - Officially dropped any kind of support for PHP 5.2.x and anything under 5.3.7.
Andrey Andreevedd347f2016-07-26 19:45:17 +0300289
Andrey Andreev86758e12016-03-22 11:39:41 +0200290- General Changes
291
292 - Updated :doc:`Image Manipulation Library <libraries/image_lib>` to validate *width* and *height* configuration values.
Andrey Andreev4d2628e2016-03-22 13:42:03 +0200293 - Updated :doc:`Encryption Library <libraries/encryption>` to always prefer ``random_bytes()`` when it is available.
Andrey Andreevd6807792016-05-26 10:28:04 +0300294 - Updated :doc:`Session Library <libraries/sessions>` to log 'debug' messages when using fallbacks to *session.save_path* (php.ini) or 'sess_use_database', 'sess_table_name' settings.
Andrey Andreev75794bc2016-05-25 12:58:30 +0300295 - Added a 'LONGTEXT' to 'STRING' alias to :doc:`Database Forge <database/forge>` for the 'cubrid', 'pdo/cubrid' drivers.
Andrey Andreev9a7f19c2016-06-28 11:12:07 +0300296 - Added 'TINYINT', 'MEDIUMINT', 'INT' and 'BIGINT' aliases to 'NUMBER' to :doc:`Database Forge <database/forge>` for the 'oci8', 'pdo/oci' drivers.
Andrey Andreev4d2628e2016-03-22 13:42:03 +0200297
298 - :php:func:`password_hash()` :doc:`compatibility function <general/compatibility_functions>` changes:
299
300 - Changed salt-generation logic to prefer ``random_bytes()`` when it is available.
301 - Changed salt-generation logic to prefer direct access to */dev/urandom* over ``openssl_random_pseudo_bytes()``.
302 - Changed salt-generation logic to error if ``openssl_random_pseudo_bytes()`` sets its ``$crypto_strong`` flag to FALSE.
Andrey Andreev86758e12016-03-22 11:39:41 +0200303
Claudio Galdiolo606ad652016-07-07 15:32:12 -0400304Bug fixes for 3.1.0
Andrey Andreev86758e12016-03-22 11:39:41 +0200305-------------------
306
307- Fixed a bug where :doc:`Image Manipulation Library <libraries/image_lib>` didn't escape image source paths passed to ImageMagick as shell arguments.
Andrey Andreevb97e6b22016-04-01 12:04:01 +0300308- Fixed a bug (#861) - :doc:`Database Forge <database/forge>` method ``create_table()`` incorrectly accepts field width constraints for MSSQL/SQLSRV integer-type columns.
Andrey Andreevf8312cf2016-04-01 21:11:23 +0300309- Fixed a bug (#4562) - :doc:`Cache Library <libraries/caching>` didn't check if ``Memcached::quit()`` is available before calling it.
Andrey Andreevcd3d5952016-04-04 10:28:31 +0300310- Fixed a bug (#4563) - :doc:`Input Library <libraries/input>` method ``request_headers()`` ignores ``$xss_clean`` parameter value after first call.
Andrey Andreev4ac24c22016-04-28 14:28:07 +0300311- Fixed a bug (#4605) - :doc:`Config Library <libraries/config>` method ``site_url()`` stripped trailing slashes from relative URIs passed to it.
Andrey Andreev84253192016-05-09 12:24:52 +0300312- Fixed a bug (#4613) - :doc:`Email Library <libraries/config>` failed to send multiple emails via SMTP due to "already authenticated" errors when keep-alive is enabled.
Andrey Andreev0fae6252016-05-17 13:46:55 +0300313- Fixed a bug (#4633) - :doc:`Form Validation Library <libraries/form_validation>` ignored multiple "callback" rules for empty, non-required fields.
Andrey Andreev79b99232016-07-19 14:12:46 +0300314- Fixed a bug (#4637) - :doc:`Database <database/index>` method ``error()`` returned ``FALSE`` with the 'oci8' driver if there was no error.
Andrey Andreeve84a1f52016-05-26 10:09:37 +0300315- Fixed a bug (#4647) - :doc:`Query Builder <database/query_builder>` method ``count_all_results()`` doesn't take into account ``GROUP BY`` clauses while deciding whether to do a subquery or not.
Andrey Andreevd6807792016-05-26 10:28:04 +0300316- Fixed a bug where :doc:`Session Library <libraries/sessions>` 'redis' driver didn't properly detect if a connection is properly closed on PHP 5.x.
Andrey Andreev83630052016-06-06 09:52:58 +0300317- Fixed a bug (#4583) - :doc:`Email Library <libraries/email>` didn't properly handle inline attachments in HTML emails.
Andrey Andreev79b99232016-07-19 14:12:46 +0300318- Fixed a bug where :doc:`Database <database/index>` method ``db_select()`` didn't clear metadata cached for the previously used database.
Andrey Andreevf7b028b2016-06-22 12:42:44 +0300319- Fixed a bug (#4675) - :doc:`File Helper <helpers/file_helper>` function :php:func:`delete_files()` treated symbolic links as regular directories.
Andrey Andreevabfa9622016-07-04 17:26:33 +0300320- Fixed a bug (#4674) - :doc:`Database <database/index>` driver 'dblib' triggered E_WARNING messages while connecting.
Andrey Andreev79b99232016-07-19 14:12:46 +0300321- Fixed a bug (#4678) - :doc:`Database Forge <database/forge>` tried to use unsupported ``IF NOT EXISTS`` clause when creating tables on Oracle.
Andrey Andreev17fa8de2016-07-06 16:48:15 +0300322- Fixed a bug (#4691) - :doc:`File Uploading Library <libraries/file_uploading>` method ``data()`` returns wrong 'raw_name' when the filename extension is also contained in the raw filename.
Andrey Andreev9fd92482016-07-19 14:04:17 +0300323- Fixed a bug (#4679) - :doc:`Input Library <libraries/input>` method ``ip_address()`` errors with a matching ``$config['proxy_ips']`` IPv6 address.
Andrey Andreevb0104752016-07-19 14:36:20 +0300324- Fixed a bug (#4695) - :doc:`User Agent Library <libraries/user_agent>` didn't load the *config/user_agents.php* file when there's no ``User-Agent`` HTTP request header.
Andrey Andreevd9a40632016-07-22 15:49:08 +0300325- Fixed a bug (#4713) - :doc:`Query Builder <database/query_builder>` methods ``insert_batch()``, ``update_batch()`` could return wrong affected rows count.
Andrey Andreevfd128d52016-07-22 16:21:06 +0300326- Fixed a bug (#4712) - :doc:`Email Library <libraries/email>` doesn't sent ``RSET`` to SMTP servers after a failure and while using keep-alive.
Andrey Andreeva8a6bc72016-07-25 10:33:35 +0300327- Fixed a bug (#4724) - :doc:`Common function <general/common_functions>` :php:func:`is_https()` compared the ``X-Forwarded-Proto`` HTTP header case-sensitively.
Andrey Andreevc3a6bfd2016-07-25 10:41:31 +0300328- Fixed a bug (#4725) - :doc:`Common function <general/common_functions>` :php:func:`remove_invisible_characters()` searched case-sensitively for URL-encoded characters.
Andrey Andreeveb373a12016-03-21 18:30:06 +0200329
Andrey Andreev4f9b20a2016-03-11 18:35:58 +0200330Version 3.0.6
331=============
332
Andrey Andreev9de0f0b2016-03-21 18:22:33 +0200333Release Date: March 21, 2016
Andrey Andreev4f9b20a2016-03-11 18:35:58 +0200334
Andrey Andreevfab0d4f2016-03-12 12:16:49 +0200335- General Changes
336
337 - Added a destructor to :doc:`Cache Library <libraries/caching>` 'memcached' driver to ensure that Memcache(d) connections are properly closed.
Andrey Andreev4f555072016-03-12 17:21:55 +0200338 - Deprecated :doc:`Form Validation Library <libraries/form_validation>` method ``prep_for_form()``.
Andrey Andreevfab0d4f2016-03-12 12:16:49 +0200339
Andrey Andreev7243d0b2016-03-12 11:40:34 +0200340Bug fixes for 3.0.6
341-------------------
342
343- Fixed a bug (#4516) - :doc:`Form Validation Library <libraries/form_validation>` always accepted empty array inputs.
Andrey Andreev2c10f602016-03-15 14:39:02 +0200344- Fixed a bug where :doc:`Session Library <libraries/sessions>` allowed accessing ``$_SESSION`` values as class properties but ``isset()`` didn't work on them.
Andrey Andreev02ac1872016-03-16 12:19:34 +0200345- Fixed a bug where :doc:`Form Validation Library <libraries/form_validation>` modified the ``$_POST`` array when the data being validated was actually provided via ``set_data()``.
Andrey Andreevf8490b92016-03-16 16:22:14 +0200346- Fixed a bug (#4539) - :doc:`Migration Library <libraries/migration>` applied migrations before validating that all migrations within the requested version range are valid.
347- Fixed a bug (#4539) - :doc:`Migration Library <libraries/migration>` triggered failures for migrations that are out of the requested version range.
Andrey Andreev4f9b20a2016-03-11 18:35:58 +0200348
Andrey Andreev4307bff2016-01-13 02:13:10 +0200349Version 3.0.5
Andrey Andreev6afbb3a2015-11-04 15:50:31 +0200350=============
351
Andrey Andreev59bcd182016-03-11 18:23:27 +0200352Release Date: March 11, 2016
Andrey Andreev6afbb3a2015-11-04 15:50:31 +0200353
Andrey Andreev82efb382016-02-15 14:43:06 +0200354- Core
355
356 - Changed :doc:`Loader Library <libraries/loader>` to allow ``$autoload['drivers']`` assigning with custom property names.
Andrey Andreev92d1cc02016-03-11 18:19:23 +0200357 - Changed :doc:`Loader Library <libraries/loader>` to ignore variables prefixed with '_ci_' when loading views.
Andrey Andreev82efb382016-02-15 14:43:06 +0200358
Andrey Andreeva027a7f2016-03-10 13:59:20 +0200359- General Changes
360
361 - Updated the :doc:`Session Library <libraries/sessions>` to produce friendlier error messages on failures with drivers other than 'files'.
362
Andrey Andreev105a48b2016-02-04 15:45:10 +0200363- :doc:`Query Builder <database/query_builder>`
364
365 - Added a ``$batch_size`` parameter to the ``insert_batch()`` method (defaults to 100).
366 - Added a ``$batch_size`` parameter to the ``update_batch()`` method (defaults to 100).
367
Andrey Andreevc70216d2016-01-20 17:25:13 +0200368Bug fixes for 3.0.5
369-------------------
370
371- Fixed a bug (#4391) - :doc:`Email Library <libraries/email>` method ``reply_to()`` didn't apply Q-encoding.
Andrey Andreevb5d41052016-01-20 19:41:29 +0200372- Fixed a bug (#4384) - :doc:`Pagination Library <libraries/pagination>` ignored (possible) *cur_page* configuration value.
Andrey Andreev075bdb42016-01-25 13:31:23 +0200373- Fixed a bug (#4395) - :doc:`Query Builder <database/query_builder>` method ``count_all_results()`` still fails if an ``ORDER BY`` condition is used.
Andrey Andreev8ec82e22016-01-26 16:33:31 +0200374- Fixed a bug (#4399) - :doc:`Query Builder <database/query_builder>` methods ``insert_batch()``, ``update_batch()`` produced confusing error messages when called with no data and *db_debug* is enabled.
Andrey Andreev1089a862016-01-27 16:15:01 +0200375- Fixed a bug (#4401) - :doc:`Query Builder <database/query_builder>` breaks ``WHERE`` and ``HAVING`` conditions that use ``IN()`` with strings containing a closing parenthesis.
Andrey Andreev0b59bdd2016-01-29 01:18:08 +0200376- Fixed a regression in :doc:`Form Helper <helpers/form_helper>` functions :php:func:`set_checkbox()`, :php:func:`set_radio()` where "checked" inputs aren't recognized after a form submit.
Andrey Andreev6af9dd62016-01-29 13:29:57 +0200377- Fixed a bug (#4407) - :doc:`Text Helper <helpers/text_helper>` function :php:func:`word_censor()` doesn't work under PHP 7 if there's no custom replacement provided.
Andrey Andreev391d3392016-01-30 22:43:41 +0200378- Fixed a bug (#4415) - :doc:`Form Validation Library <libraries/form_validation>` rule **valid_url** didn't accept URLs with IPv6 addresses enclosed in square brackets under PHP 5 (upstream bug).
Andrey Andreevaac95822016-03-11 18:25:37 +0200379- Fixed a bug (#4427) - :doc:`CAPTCHA Helper <helpers/captcha_helper>` triggers an error if the provided character pool is too small.
Andrey Andreev71d64cb2016-02-04 15:04:35 +0200380- Fixed a bug (#4430) - :doc:`File Uploading Library <libraries/file_uploading>` option **file_ext_tolower** didn't work.
Andrey Andreev805edda2016-02-05 12:44:19 +0200381- Fixed a bug (#4431) - :doc:`Query Builder <database/query_builder>` method ``join()`` discarded opening parentheses.
Andrey Andreevacc2f242016-02-05 14:39:40 +0200382- Fixed a bug (#4424) - :doc:`Session Library <libraries/sessions>` triggered a PHP warning when writing a newly created session with the 'redis' driver.
Andrey Andreevc65a37e2016-02-08 12:29:14 +0200383- Fixed a bug (#4437) - :doc:`Inflector Helper <helpers/inflector_helper>` function :php:func:`humanize()` didn't escape its ``$separator`` parameter while using it in a regular expression.
Andrey Andreevd45cd5a2016-02-10 07:50:19 +0200384- Fixed a bug where :doc:`Session Library <libraries/sessions>` didn't properly handle its locks' statuses with the 'memcached' driver.
Andrey Andreeva54a2b92016-02-10 19:55:39 +0200385- Fixed a bug where :doc:`Session Library <libraries/sessions>` triggered a PHP warning when writing a newly created session with the 'memcached' driver.
Andrey Andreev9198ad02016-02-12 00:07:31 +0200386- Fixed a bug (#4449) - :doc:`Query Builder <database/query_builder>` method ``join()`` breaks conditions containing ``IS NULL``, ``IS NOT NULL``.
Andrey Andreeve0b11e92016-02-29 17:41:19 +0200387- Fixed a bug (#4491) - :doc:`Session Library <libraries/sessions>` didn't clean-up internal variables for emulated locks with the 'redis' driver.
388- Fixed a bug where :doc:`Session Library <libraries/sessions>` didn't clean-up internal variables for emulated locks with the 'memcached' driver.
Andrey Andreev8108b612016-03-07 10:10:17 +0200389- Fixed a bug where :doc:`Database <database/index>` transactions didn't work with the 'ibase' driver.
Andrey Andreev3c0d8da2016-03-07 10:52:15 +0200390- Fixed a bug (#4475) - :doc:`Security Library <libraries/security>` method ``strip_image_tags()`` preserves only the first URL character from non-quoted *src* attributes.
Andrey Andreeve6a5f792016-03-07 11:34:43 +0200391- Fixed a bug where :doc:`Profiler Library <general/profiling>` didn't apply ``htmlspecialchars()`` to all displayed inputs.
Andrey Andreev1be89872016-03-11 18:12:57 +0200392- Fixed a bug (#4277) - :doc:`Cache Library <libraries/caching>` triggered fatal errors if accessing the Memcache(d) and/or Redis driver and they are not available on the system.
Andrey Andreev17192232016-03-11 22:09:53 +0200393- Fixed a bug where :doc:`Cache Library <libraries/caching>` method ``is_supported()`` logged an error message when it returns ``FALSE`` for the APC and Wincache drivers.
Andrey Andreev4307bff2016-01-13 02:13:10 +0200394
395Version 3.0.4
396=============
397
398Release Date: January 13, 2016
399
Andrey Andreev7e983df2015-11-24 11:50:59 +0200400- General Changes
401
Andrey Andreev79b8a082016-01-07 13:55:21 +0200402 - Updated :doc:`Security Library <libraries/security>` method ``get_random_bytes()`` to use PHP 7's ``random_bytes()`` function when possible.
403 - Updated :doc:`Encryption Library <libraries/security>` method ``create_key()`` to use PHP 7's ``random_bytes()`` function when possible.
Andrey Andreev89576a82016-01-07 14:39:04 +0200404
405- :doc:`Database <database/index>`
406
407 - Added support for ``OFFSET-FETCH`` with Oracle 12c for the 'oci8' and 'pdo/oci' drivers.
408 - Added support for the new ``MYSQLI_CLIENT_SSL_DONT_VERIFY_SERVER_CERT`` constant from `PHP 5.6.16 <https://secure.php.net/ChangeLog-5.php#5.6.16>`_ for the 'mysqli' driver.
Andrey Andreev7e983df2015-11-24 11:50:59 +0200409
Andrey Andreev939f1a22015-11-04 15:52:16 +0200410Bug fixes for 3.0.4
411-------------------
412
413- Fixed a bug (#4212) - :doc:`Query Builder <database/query_builder>` method ``count_all_results()`` could fail if an ``ORDER BY`` condition is used.
Andrey Andreeva18c6092015-12-03 17:53:14 +0200414- Fixed a bug where :doc:`Form Helper <helpers/form_helper>` functions :php:func:`set_checkbox()`, :php:func:`set_radio()` didn't "uncheck" inputs on a submitted form if the default state is "checked".
Andrey Andreev4cda8072015-11-09 11:00:32 +0200415- Fixed a bug (#4217) - :doc:`Config Library <libraries/config>` method ``base_url()`` didn't use proper formatting for IPv6 when it falls back to ``$_SERVER['SERVER_ADDR']``.
Andrey Andreev2fe1a232015-11-09 11:24:19 +0200416- Fixed a bug where :doc:`CAPTCHA Helper <helpers/captcha_helper>` entered an infinite loop while generating a random string.
Andrey Andreev0ca9ae62016-01-06 14:51:27 +0200417- Fixed a bug (#4223) - :doc:`Database <database/index>` method ``simple_query()`` blindly executes queries without checking if the connection was initialized properly.
Andrey Andreevb06b5c42015-11-16 13:37:58 +0200418- Fixed a bug (#4244) - :doc:`Email Library <libraries/email>` could improperly use "unsafe" US-ASCII characters during Quoted-printable encoding.
Andrey Andreev9e2c7b92015-11-16 15:44:24 +0200419- Fixed a bug (#4245) - :doc:`Database Forge <database/forge>` couldn't properly handle ``SET`` and ``ENUM`` type fields with string values.
Andrey Andreeva18c6092015-12-03 17:53:14 +0200420- Fixed a bug (#4283) - :doc:`String Helper <helpers/string_helper>` function :php:func:`alternator()` couldn't be called without arguments.
Andrey Andreev71a65c32015-12-11 17:21:51 +0200421- Fixed a bug (#4306) - :doc:`Database <database/index>` method ``version()`` didn't work properly with the 'mssql' driver.
Andrey Andreeve705f8e2015-12-11 17:58:55 +0200422- Fixed a bug (#4039) - :doc:`Session Library <libraries/sessions>` could generate multiple (redundant) warnings in case of a read failure with the 'files' driver, due to a bug in PHP.
Andrey Andreevaf849692015-12-12 14:07:39 +0200423- Fixed a bug where :doc:`Session Library <libraries/sessions>` didn't have proper error handling on PHP 5 (due to a PHP bug).
Andrey Andreevce8fa5a2015-12-14 12:57:09 +0200424- Fixed a bug (#4312) - :doc:`Form Validation Library <libraries/form_validation>` didn't provide error feedback for failed validation on empty requests.
Andrey Andreevbc05b842015-12-14 16:22:33 +0200425- Fixed a bug where :doc:`Database <database/index>` method `version()` returned banner text instead of only the version number with the 'oci8' and 'pdo/oci' drivers.
Andrey Andreevf3ddda72015-12-30 21:38:54 +0200426- Fixed a bug (#4331) - :doc:`Database <database/index>` method ``error()`` didn't really work for connection errors with the 'mysqli' driver.
Andrey Andreev9d84d3c2015-12-30 21:50:20 +0200427- Fixed a bug (#4343) - :doc:`Email Library <libraries/email>` failing with a *"More than one 'from' person"* message when using *sendmail*.
Andrey Andreev0b1efb32016-01-04 12:34:14 +0200428- Fixed a bug (#4350) - :doc:`Loader Library <libraries/loader>` method ``model()`` logic directly instantiated the ``CI_Model`` or ``MY_Model`` classes.
Andrey Andreev0ca9ae62016-01-06 14:51:27 +0200429- Fixed a bug (#4337) - :doc:`Database <database/index>` method ``query()`` didn't return a result set for queries with the ``RETURNING`` statement on PostgreSQL.
Andrey Andreev79b8a082016-01-07 13:55:21 +0200430- Fixed a bug (#4362) - :doc:`Session Library <libraries/sessions>` doesn't properly maintain its state after ID regeneration with the 'redis' and 'memcached' drivers on PHP 7.
Andrey Andreev679e9482016-01-07 17:31:21 +0200431- Fixed a bug (#4349) - :doc:`Database <database/index>` drivers 'mysql', 'mysqli', 'pdo/mysql' discard other ``sql_mode`` flags when "stricton" is enabled.
432- Fixed a bug (#4349) - :doc:`Database <database/index>` drivers 'mysql', 'mysqli', 'pdo/mysql' don't turn off ``STRICT_TRANS_TABLES`` on MySQL 5.7+ when "stricton" is disabled.
Andrey Andreevfd5fe1a642016-01-11 11:58:40 +0200433- Fixed a bug (#4374) - :doc:`Session Library <libraries/sessions>` with the 'database' driver could be affected by userspace :doc:`Query Builder <database/query_builder>` conditions.
Andrey Andreev939f1a22015-11-04 15:52:16 +0200434
Andrey Andreev2d7092c2015-10-12 16:54:08 +0300435Version 3.0.3
436=============
437
Andrey Andreev0abc55a2015-10-31 19:30:41 +0200438Release Date: October 31, 2015
439
440- **Security**
441
442 - Fixed an XSS attack vector in :doc:`Security Library <libraries/security>` method ``xss_clean()``.
443 - Changed :doc:`Config Library <libraries/config>` method ``base_url()`` to fallback to ``$_SERVER['SERVER_ADDR']`` when ``$config['base_url']`` is empty in order to avoid *Host* header injections.
444 - Changed :doc:`CAPTCHA Helper <helpers/captcha_helper>` to use the operating system's PRNG when possible.
Andrey Andreev2d7092c2015-10-12 16:54:08 +0300445
Andrey Andreev1f91ac62016-01-13 02:05:39 +0200446- :doc:`Database <database/index>`
Andrey Andreev2d7092c2015-10-12 16:54:08 +0300447
448 - Optimized :doc:`Database Utility <database/utilities>` method ``csv_from_result()`` for speed with larger result sets.
Andrey Andreeva7d4aba2015-10-19 14:39:44 +0300449 - Added proper return values to :doc:`Database Transactions <database/transactions>` method ``trans_start()``.
Andrey Andreev2d7092c2015-10-12 16:54:08 +0300450
451Bug fixes for 3.0.3
452-------------------
453
Andrey Andreev9d02cea2015-10-13 14:38:30 +0300454- Fixed a bug (#4170) - :doc:`Database <database/index>` method ``insert_id()`` could return an identity from the wrong scope with the 'sqlsrv' driver.
Andrey Andreev79b8a082016-01-07 13:55:21 +0200455- Fixed a bug (#4179) - :doc:`Session Library <libraries/sessions>` doesn't properly maintain its state after ID regeneration with the 'database' driver on PHP 7.
Andrey Andreev95f81572015-10-19 13:16:19 +0300456- Fixed a bug (#4173) - :doc:`Database Forge <database/forge>` method ``add_key()`` didn't allow creation of non-PRIMARY composite keys after the "bugfix" for #3968.
Andrey Andreeva7d4aba2015-10-19 14:39:44 +0300457- Fixed a bug (#4171) - :doc:`Database Transactions <database/transactions>` didn't work with nesting in methods ``trans_begin()``, ``trans_commit()``, ``trans_rollback()``.
458- Fixed a bug where :doc:`Database Transaction <database/transactions>` methods ``trans_begin()``, ``trans_commit()``, ``trans_rollback()`` ignored failures.
459- Fixed a bug where all :doc:`Database Transaction <database/transactions>` methods returned TRUE while transactions are actually disabled.
Andrey Andreev09a76b82015-10-30 11:50:08 +0200460- Fixed a bug where :doc:`common function <general/common_functions>` :php:func:`html_escape()` modified keys of its array inputs.
Andrey Andreev3368ceb2015-10-30 12:25:15 +0200461- Fixed a bug (#4192) - :doc:`Email Library <libraries/email>` wouldn't always have proper Quoted-printable encoding due to a bug in PHP's own ``mb_mime_encodeheader()`` function.
Andrey Andreev9d02cea2015-10-13 14:38:30 +0300462
Andrey Andreev1c0f46a2015-08-07 14:42:29 +0300463Version 3.0.2
464=============
465
Andrey Andreev47adcef2015-10-08 17:21:06 +0300466Release Date: October 8, 2015
467
468- **Security**
469
470 - Fixed a number of XSS attack vectors in :doc:`Security Library <libraries/security>` method ``xss_clean()`` (thanks to Frans Rosén from `Detectify <https://detectify.com/>`_).
Andrey Andreev1c0f46a2015-08-07 14:42:29 +0300471
Andrey Andreev0d60a212015-08-13 13:14:59 +0300472- General Changes
473
474 - Updated the *application/config/constants.php* file to check if constants aren't already defined before doing that.
Andrey Andreev825fab72015-08-17 09:52:42 +0300475 - Changed :doc:`Loader Library <libraries/loader>` method ``model()`` to only apply ``ucfirst()`` and not ``strtolower()`` to the requested class name.
Andrey Andreev392f8da2015-09-14 14:52:48 +0300476 - Changed :doc:`Config Library <libraries/config>` methods ``base_url()``, ``site_url()`` to allow protocol-relative URLs by passing an empty string as the protocol.
Andrey Andreev0d60a212015-08-13 13:14:59 +0300477
Andrey Andreeva12cf282015-08-07 17:37:05 +0300478Bug fixes for 3.0.2
479-------------------
480
481- Fixed a bug (#2284) - :doc:`Database <database/index>` method ``protect_identifiers()`` breaks when :doc:`Query Builder <database/query_builder>` isn't enabled.
Andrey Andreevc2c7cb72015-08-14 13:48:31 +0300482- Fixed a bug (#4052) - :doc:`Routing <general/routing>` with anonymous functions didn't work for routes that don't use regular expressions.
Andrey Andreevd45180c2015-08-15 09:09:38 +0300483- Fixed a bug (#4056) - :doc:`Input Library <libraries/input>` method ``get_request_header()`` could not return a value unless ``request_headers()`` was called beforehand.
Andrey Andreeveb492582015-08-19 11:16:52 +0300484- Fixed a bug where the :doc:`Database Class <database/index>` entered an endless loop if it fails to connect with the 'sqlsrv' driver.
Andrey Andreevbe178a72015-08-20 13:23:21 +0300485- Fixed a bug (#4065) - :doc:`Database <database/index>` method ``protect_identifiers()`` treats a traling space as an alias separator if the input doesn't contain ' AS '.
Andrey Andreev24a4a6a2015-08-31 15:11:47 +0300486- Fixed a bug (#4066) - :doc:`Cache Library <libraries/caching>` couldn't fallback to a backup driver if the primary one is Memcache(d) or Redis.
Andrey Andreev8e138ec2015-08-31 15:23:42 +0300487- Fixed a bug (#4073) - :doc:`Email Library <libraries/email>` method ``send()`` could return TRUE in case of an actual failure when an SMTP command fails.
Andrey Andreev348a2d42015-08-31 17:39:04 +0300488- Fixed a bug (#4086) - :doc:`Query Builder <database/query_builder>` didn't apply *dbprefix* to LIKE conditions if the pattern included spaces.
Andrey Andreev4dac6eb2015-08-31 17:52:27 +0300489- Fixed a bug (#4091) - :doc:`Cache Library <libraries/caching>` 'file' driver could be tricked into accepting empty cache item IDs.
Andrey Andreev554b4522015-09-01 13:51:26 +0300490- Fixed a bug (#4093) - :doc:`Query Builder <database/query_builder>` modified string values containing 'AND', 'OR' while compiling WHERE conditions.
Andrey Andreev0d0c53c2015-09-03 11:23:44 +0300491- Fixed a bug (#4096) - :doc:`Query Builder <database/query_builder>` didn't apply *dbprefix* when compiling BETWEEN conditions.
Andrey Andreev20f362b2015-09-10 13:11:33 +0300492- Fixed a bug (#4105) - :doc:`Form Validation Library <libraries/form_validation>` didn't allow pipe characters inside "bracket parameters" when using a string ruleset.
Andrey Andreevf2239fe2015-09-14 13:48:03 +0300493- Fixed a bug (#4109) - :doc:`Routing <general/routing>` to *default_controller* didn't work when *enable_query_strings* is set to TRUE.
Andrey Andreev24ff6db2015-09-14 13:56:41 +0300494- Fixed a bug (#4044) - :doc:`Cache Library <libraries/caching>` 'redis' driver didn't catch ``RedisException`` that could be thrown during authentication.
Andrey Andreevad4882f2015-09-16 11:29:50 +0300495- Fixed a bug (#4120) - :doc:`Database <database/index>` method ``error()`` didn't return error info when called after ``query()`` with the 'mssql' driver.
Andrey Andreev135b64a2015-09-16 14:20:50 +0300496- Fixed a bug (#4116) - :doc:`Pagination Library <libraries/pagination>` set the wrong page number on the "data-ci-pagination-page" attribute in generated links.
Andrey Andreevc094bec2015-10-08 17:18:57 +0300497- Fixed a bug where :doc:`Pagination Library <libraries/pagination>` added the 'rel="start"' attribute to the first displayed link even if it's not actually linking the first page.
Andrey Andreev84f24c22015-09-24 15:17:28 +0300498- Fixed a bug (#4137) - :doc:`Error Handling <general/errors>` breaks for the new ``Error`` exceptions under PHP 7.
Andrey Andreevf084acf2015-09-29 12:35:00 +0300499- Fixed a bug (#4126) - :doc:`Form Validation Library <libraries/form_validation>` method ``reset_validation()`` discarded validation rules from config files.
Andrey Andreev1c0f46a2015-08-07 14:42:29 +0300500
Andrey Andreev68bad622015-04-01 14:51:25 +0300501Version 3.0.1
502=============
Derek Jones8ede1a22011-10-05 13:34:52 -0500503
Andrey Andreev53f88822015-08-07 14:37:02 +0300504Release Date: August 7, 2015
Derek Jones8ede1a22011-10-05 13:34:52 -0500505
Andrey Andreev68bad622015-04-01 14:51:25 +0300506- Core
Andrey Andreevc19f3b22015-07-15 16:41:06 +0300507
Andrey Andreev68bad622015-04-01 14:51:25 +0300508 - Added DoS mitigation to :php:func:`hash_pbkdf2()` :doc:`compatibility function <general/compatibility_functions>`.
509
Andrey Andreevd5784082015-06-22 11:50:04 +0300510- Database
Andrey Andreev0f850902015-04-29 12:33:11 +0300511
512 - Added ``list_fields()`` support for SQLite ('sqlite3' and 'pdo_sqlite' drivers).
Andrey Andreeva38b0c42015-07-16 14:25:25 +0300513 - Added SSL connection support for the 'mysqli' and 'pdo_mysql' drivers.
Andrey Andreev0f850902015-04-29 12:33:11 +0300514
Andrey Andreevd5784082015-06-22 11:50:04 +0300515- Libraries
516
517 - :doc:`File Uploading Library <libraries/file_uploading>` changes:
518
519 - Changed method ``set_error()`` to accept a custom log level (defaults to 'error').
520 - Errors "no_file_selected", "file_partial", "stopped_by_extension", "no_file_types", "invalid_filetype", "bad_filename" are now logged at the 'debug' level.
521 - Errors "file_exceeds_limit", "file_exceeds_form_limit", "invalid_filesize", "invalid_dimensions" are now logged at the 'info' level.
522
Andrey Andreev15c42482015-07-06 11:19:30 +0300523 - Added 'is_resource' to the available expectations in :doc:`Unit Testing Library <libraries/unit_testing>`.
524
Andrey Andreev1dfc20d2015-07-15 15:30:01 +0300525- Helpers
526
527 - Added Unicode support to :doc:`URL Helper <helpers/url_helper>` function :php:func:`url_title()`.
Andrey Andreev77034ea2015-07-15 16:04:29 +0300528 - Added support for passing the "extra" parameter as an array to all :doc:`Form Helper <helpers/form_helper>` functions that use it.
Andrey Andreevd5784082015-06-22 11:50:04 +0300529
Andrey Andreev4a4cbb32015-07-15 17:39:44 +0300530- Core
531
532 - Added support for defining a list of specific query parameters in ``$config['cache_query_string']`` for the :doc:`Output Library <libraries/output>`.
Andrey Andreevb63dc192015-07-22 13:14:50 +0300533 - Added class existence and inheritance checks to ``CI_Loader::model()`` in order to ease debugging in case of name collisions.
Andrey Andreev4a4cbb32015-07-15 17:39:44 +0300534
Andrey Andreeve36d0482015-04-04 21:55:09 +0300535Bug fixes for 3.0.1
536-------------------
537
538- Fixed a bug (#3733) - Autoloading of libraries with aliases didn't work, although it was advertised to.
ftwbzhaoebfc48a2015-04-09 22:34:27 +0800539- Fixed a bug (#3744) - Redis :doc:`Caching <libraries/caching>` driver didn't handle authentication failures properly.
Andrey Andreevc14aa9b2015-04-12 14:23:47 +0300540- Fixed a bug (#3761) - :doc:`URL Helper <helpers/url_helper>` function :php:func:`anchor()` didn't work with array inputs.
Andrey Andreev8af87462015-04-14 15:59:54 +0300541- Fixed a bug (#3773) - ``db_select()`` didn't work for MySQL with the PDO :doc:`Database <database/index>` driver.
Andrey Andreev3022d172015-06-22 14:21:59 +0300542- Fixed a bug (#3771) - :doc:`Form Validation Library <libraries/form_validation>` was looking for a 'form_validation\_' prefix when trying to translate field name labels.
Andrey Andreevd3913f52015-04-20 14:47:00 +0300543- Fixed a bug (#3787) - :doc:`FTP Library <libraries/ftp>` method ``delete_dir()`` failed when the target has subdirectories.
Ivan Tcholakovd5935352015-04-24 13:57:01 +0300544- Fixed a bug (#3801) - :doc:`Output Library <libraries/output>` method ``_display_cache()`` incorrectly looked for the last modified time of a directory instead of the cache file.
Andrey Andreevb137d232015-04-29 11:44:38 +0300545- Fixed a bug (#3816) - :doc:`Form Validation Library <libraries/form_validation>` treated empty string values as non-existing ones.
Andrey Andreev73b9e852015-04-30 13:06:40 +0300546- Fixed a bug (#3823) - :doc:`Session Library <libraries/sessions>` drivers Redis and Memcached didn't properly handle locks that are blocking the request for more than 30 seconds.
Andrey Andreevfbde2792015-05-11 11:03:06 +0300547- Fixed a bug (#3846) - :doc:`Image Manipulation Library <libraries/image_lib>` method `image_mirror_gd()` didn't properly initialize its variables.
Leandro Mangini Antunes56514f12015-05-13 12:53:21 -0300548- Fixed a bug (#3854) - `field_data()` didn't work properly with the Oracle (OCI8) database driver.
Andrey Andreevb8cd5e62015-05-21 01:10:36 +0300549- Fixed a bug in the :doc:`Database Utility Class <database/utilities>` method ``csv_from_result()`` didn't work with a whitespace CSV delimiter.
Andrey Andreevb7639482015-06-08 14:44:47 +0300550- Fixed a bug (#3890) - :doc:`Input Library <libraries/input>` method ``get_request_header()`` treated header names as case-sensitive.
Andrey Andreev38b5eb02015-06-10 17:38:26 +0300551- Fixed a bug (#3903) - :doc:`Form Validation Library <libraries/form_validation>` ignored "unnamed" closure validation rules.
Andrey Andreev29de1652015-06-11 17:44:20 +0300552- Fixed a bug (#3904) - :doc:`Form Validation Library <libraries/form_validation>` ignored "named" callback rules when the field is empty and there's no 'required' rule.
Andrey Andreev4e0496e2015-06-22 12:34:38 +0300553- Fixed a bug (#3922) - :doc:`Email <libraries/email>` and :doc:`XML-RPC <libraries/xmlrpc>` libraries could enter an infinite loop due to `PHP bug #39598 <https://bugs.php.net/bug.php?id=39598>`_.
Andrey Andreev9aade1c2015-06-22 13:19:45 +0300554- Fixed a bug (#3913) - :doc:`Cache Library <libraries/caching>` didn't work with the direct ``$this->cache->$driver_name->method()`` syntax with Redis and Memcache(d).
Andrey Andreev59d1ffd2015-06-29 11:26:01 +0300555- Fixed a bug (#3932) - :doc:`Query Builder <database/query_builder>` didn't properly compile WHERE and HAVING conditions for field names that end with "and", "or".
Andrey Andreeva1170af2015-07-02 11:46:56 +0300556- Fixed a bug in :doc:`Query Builder <database/query_builder>` where ``delete()`` didn't properly work on multiple tables with a WHERE condition previously set via ``where()``.
ftwbzhao820f06f2015-07-05 21:25:32 +0800557- Fixed a bug (#3952) - :doc:`Database <database/index>` method ``list_fields()`` didn't work with SQLite3.
Andrey Andreev15c42482015-07-06 11:19:30 +0300558- Fixed a bug (#3955) - :doc:`Cache Library <libraries/caching>` methods ``increment()`` and ``decrement()`` ignored the 'key_prefix' setting.
Andrey Andreev7018d892015-07-08 17:57:52 +0300559- Fixed a bug (#3963) - :doc:`Unit Testing Library <libraries/unit_testing>` wrongly tried to translate filenames, line numbers and notes values in test results.
Andrey Andreev91da5d12015-07-09 15:14:35 +0300560- Fixed a bug (#3965) - :doc:`File Uploading Library <libraries/file_uploading>` ignored the "encrypt_name" setting when "overwrite" is enabled.
Andrey Andreev8fda5402015-07-15 15:48:37 +0300561- Fixed a bug (#3968) - :doc:`Database Forge <database/forge>` method ``add_key()`` didn't treat array inputs as composite keys unless it's a PRIMARY KEY.
Andrey Andreev63c34f22015-07-15 17:13:34 +0300562- Fixed a bug (#3715) - :doc:`Pagination Library <libraries/pagination>` could generate broken link when a protocol-relative base URL is used.
Andrey Andreev4a4cbb32015-07-15 17:39:44 +0300563- Fixed a bug (#3828) - :doc:`Output Library <libraries/output>` method ``delete_cache()`` couldn't delete index page caches.
Andrey Andreev2b655182015-07-20 14:52:04 +0300564- Fixed a bug (#3704) - :doc:`Database <database/index>` method ``stored_procedure()`` in the 'oci8' driver didn't properly bind parameters.
Andrey Andreev15e2df72015-07-17 13:56:49 +0300565- Fixed a bug (#3778) - :doc:`Download Helper <helpers/download_helper>` function :php:func:`force_download()` incorrectly sent a *Pragma* response header.
Andrey Andreev2ef5ed42015-07-17 14:24:26 +0300566- Fixed a bug (#3752) - ``$routing['directory']`` overrides were not properly handled and always resulted in a 404 "Not Found" error.
Andrey Andreev4b9fec62015-07-20 17:26:31 +0300567- Fixed a bug (#3279) - :doc:`Query Builder <database/query_builder>` methods ``update()`` and ``get_compiled_update()`` did double escaping on the table name if it was provided via ``from()``.
Andrey Andreev07355da2015-07-22 12:46:16 +0300568- Fixed a bug (#3991) - ``$config['rewrite_short_tags']`` never worked due to ``function_exists('eval')`` always returning FALSE.
Andrey Andreev7ae0fdd2015-07-30 22:57:48 +0300569- Fixed a bug where the :doc:`File Uploading Library <libraries/file_uploading>` library will not properly configure its maximum file size unless the input value is of type integer.
Andrey Andreevd91ed262015-07-26 23:12:16 +0300570- Fixed a bug (#4000) - :doc:`Pagination Library <libraries/pagination>` didn't enable "rel" attributes by default if no attributes-related config options were used.
Andrey Andreevfddbde62015-07-28 00:07:21 +0300571- Fixed a bug (#4004) - :doc:`URI Class <libraries/uri>` didn't properly parse the request URI if it contains a colon followed by a digit.
Andrey Andreevd738b6b2015-07-29 16:24:57 +0300572- Fixed a bug in :doc:`Query Builder <database/query_builder>` where the ``$escape`` parameter for some methods only affected field names.
Andrey Andreev0d2d84f2015-07-31 13:48:59 +0300573- Fixed a bug (#4012) - :doc:`Query Builder <database/query_builder>` methods ``where_in()``, ``or_where_in()``, ``where_not_in()``, ``or_where_not_in()`` didn't take into account previously cached WHERE conditions when query cache is in use.
Andrey Andreev6cefc6b2015-08-03 10:22:19 +0300574- Fixed a bug (#4015) - :doc:`Email Library <libraries/email>` method ``set_header()`` didn't support method chaining, although it was advertised.
Andrey Andreevabc299b2015-08-05 12:26:22 +0300575- Fixed a bug (#4027) - :doc:`Routing <general/routing>` with HTTP verbs only worked if the route request method was declared in all-lowercase letters.
Andrey Andreev4e5ff1f2015-08-05 14:32:03 +0300576- Fixed a bug (#4026) - :doc:`Database Transactions <database/transactions>` always rollback if any previous ``query()`` call fails.
Andrey Andreev9bb94692015-08-07 13:29:11 +0300577- Fixed a bug (#4023) - :doc:`String Helper <helpers/string_helper>` function ``increment_string()`` didn't escape its ``$separator`` parameter.
Andrey Andreev68bad622015-04-01 14:51:25 +0300578
579Version 3.0.0
580=============
581
582Release Date: March 30, 2015
583
Andrey Andreevebee5262013-07-17 11:16:24 +0300584- License
Derek Jonesf4a4bd82011-10-20 12:18:42 -0500585
Andrey Andreevbdb96ca2014-10-28 00:13:31 +0200586 - CodeIgniter has been relicensed with the `MIT License <http://opensource.org/licenses/MIT>`_, eliminating its old proprietary licensing.
Derek Jonesf4a4bd82011-10-20 12:18:42 -0500587
Andrey Andreevebee5262013-07-17 11:16:24 +0300588- General Changes
Timothy Warrendeb65962011-10-17 12:26:02 -0400589
Andrey Andreevfe9309d2015-01-09 17:48:58 +0200590 - PHP 5.1.6 is no longer supported. CodeIgniter now requires PHP 5.2.4 and recommends PHP 5.4+ or newer to be used.
Andrey Andreev025e6622013-07-22 14:46:17 +0300591 - Changed filenaming convention (class file names now must be Ucfirst and everything else in lowercase).
Andrey Andreev50a9d862014-01-08 18:53:58 +0200592 - Changed the default database driver to 'mysqli' (the old 'mysql' driver is DEPRECATED).
Phil Sturgeondda21f62012-06-03 10:36:36 -0500593 - ``$_SERVER['CI_ENV']`` can now be set to control the ``ENVIRONMENT`` constant.
Timothy Warren52aff712011-10-17 12:26:56 -0400594 - Added an optional backtrace to php-error template.
Derek Jones8ede1a22011-10-05 13:34:52 -0500595 - Added Android to the list of user agents.
Andrey Andreeva6eae872014-01-03 18:25:20 +0200596 - Added Windows 7, Windows 8, Windows 8.1, Android, Blackberry, iOS and PlayStation 3 to the list of user platforms.
Andrey Andreevd4901392012-06-06 14:54:15 +0300597 - Added Fennec (Firefox for mobile) to the list of mobile user agents.
Phil Sturgeonf748ebc2011-11-13 19:24:16 +0000598 - Ability to log certain error types, not all under a threshold.
599 - Added support for pem, p10, p12, p7a, p7c, p7m, p7r, p7s, crt, crl, der, kdb, rsa, cer, sst, csr Certs to mimes.php.
Jonatas Miguel982a9f22012-10-24 18:34:40 +0100600 - Added support for pgp, gpg, zsh and cdr files to mimes.php.
Andrey Andreev7c9766a2012-01-03 10:18:41 +0200601 - Added support for 3gp, 3g2, mp4, wmv, f4v, vlc Video files to mimes.php.
Jonatas Miguel982a9f22012-10-24 18:34:40 +0100602 - Added support for m4a, aac, m4u, xspf, au, ac3, flac, ogg, wma Audio files to mimes.php.
Andrey Andreev7c9766a2012-01-03 10:18:41 +0200603 - Added support for kmz and kml (Google Earth) files to mimes.php.
Andrey Andreevd1a075d2012-06-15 23:28:52 +0300604 - Added support for ics Calendar files to mimes.php.
Jonatas Miguel982a9f22012-10-24 18:34:40 +0100605 - Added support for rar, jar and 7zip archives to mimes.php.
Andrey Andreevb2457b72012-06-07 23:36:56 +0300606 - Updated support for xml ('application/xml') and xsl ('application/xml', 'text/xsl') files in mimes.php.
Michiel Vugteveenadcb8fd2012-02-29 14:20:33 +0100607 - Updated support for doc files in mimes.php.
Jonatas Miguel982a9f22012-10-24 18:34:40 +0100608 - Updated support for docx files in mimes.php.
Andrey Andreevd1a075d2012-06-15 23:28:52 +0300609 - Updated support for php files in mimes.php.
610 - Updated support for zip files in mimes.php.
Jonatas Miguel982a9f22012-10-24 18:34:40 +0100611 - Updated support for csv files in mimes.php.
Andrey Andreevce1b02a2012-11-01 14:40:52 +0200612 - Added Romanian, Greek, Vietnamese and Cyrilic characters in *application/config/foreign_characters.php*.
Eric Barnesf30da662011-12-04 10:35:58 -0500613 - Changed logger to only chmod when file is first created.
Greg Akerd1af1852011-12-25 21:59:30 -0600614 - Removed previously deprecated SHA1 Library.
Andrey Andreevce1b02a2012-11-01 14:40:52 +0200615 - Removed previously deprecated use of ``$autoload['core']`` in *application/config/autoload.php*.
Andrey Andreev75f7c122012-01-08 03:49:25 +0200616 Only entries in ``$autoload['libraries']`` are auto-loaded now.
Andrey Andreev079fbfc2012-06-12 02:26:58 +0300617 - Removed previously deprecated EXT constant.
Andrey Andreevc6a68e02012-03-26 14:30:10 +0300618 - Updated all classes to be written in PHP 5 style, with visibility declarations and no ``var`` usage for properties.
Andrey Andreev4b838af2014-10-28 23:46:45 +0200619 - Added an Exception handler.
620 - Moved error templates to *application/views/errors/* and made the path configurable via ``$config['error_views_path']``.
vlakoff05079dd2014-04-12 07:34:39 +0200621 - Added support non-HTML error templates for CLI applications.
Andrey Andreev0aeee852012-11-09 17:43:11 +0200622 - Moved the Log class to *application/core/*
Andrey Andreev079fbfc2012-06-12 02:26:58 +0300623 - Global config files are loaded first, then environment ones. Environment config keys overwrite base ones, allowing to only set the keys we want changed per environment.
624 - Changed detection of ``$view_folder`` so that if it's not found in the current path, it will now also be searched for under the application folder.
625 - Path constants BASEPATH, APPPATH and VIEWPATH are now (internally) defined as absolute paths.
Andrey Andreevcbb654d2012-07-10 11:36:32 +0300626 - Updated email validation methods to use ``filter_var()`` instead of PCRE.
Jonatas Miguel982a9f22012-10-24 18:34:40 +0100627 - Changed environment defaults to report all errors in *development* and only fatal ones in *testing*, *production* but only display them in *development*.
628 - Updated *ip_address* database field lengths from 16 to 45 for supporting IPv6 address on :doc:`Trackback Library <libraries/trackback>` and :doc:`Captcha Helper <helpers/captcha_helper>`.
629 - Removed *cheatsheets* and *quick_reference* PDFs from the documentation.
Andrey Andreeve9d2dc82012-11-07 14:23:29 +0200630 - Added availability checks where usage of dangerous functions like ``eval()`` and ``exec()`` is required.
Andrey Andreeva107a0f2013-02-15 22:30:31 +0200631 - Added support for changing the file extension of log files using ``$config['log_file_extension']``.
Andrey Andreevaeed15e2014-04-14 16:56:23 +0300632 - Added support for turning newline standardization on/off via ``$config['standardize_newlines']`` and set it to FALSE by default.
Master Yodabd2a7e42015-03-25 02:36:31 -0700633 - Added configuration setting ``$config['composer_autoload']`` to enable loading of a `Composer <https://getcomposer.org>`_ auto-loader.
Andrey Andreevbfa233f2014-12-05 12:00:11 +0200634 - Removed the automatic conversion of 'programmatic characters' to HTML entities from the :doc:`URI Library <libraries/uri>`.
Andrey Andreev90726b82015-01-20 12:39:22 +0200635 - Changed log messages that say a class or file was loaded to "info" level instead of "debug", so that they don't pollute log files when ``$config['log_threshold']`` is set to 2 (debug).
Phil Sturgeonf748ebc2011-11-13 19:24:16 +0000636
Andrey Andreevebee5262013-07-17 11:16:24 +0300637- Helpers
Phil Sturgeonf748ebc2011-11-13 19:24:16 +0000638
Andrey Andreevac570332012-07-04 13:04:10 +0300639 - :doc:`Date Helper <helpers/date_helper>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -0500640
Andrey Andreevcd3d9db2015-02-02 13:41:01 +0200641 - Added an optional third parameter to :php:func:`timespan()` that constrains the number of time units displayed.
642 - Added an optional parameter to :php:func:`timezone_menu()` that allows more attributes to be added to the generated select tag.
643 - Added function :php:func:`date_range()` that generates a list of dates between a specified period.
Master Yodabd2a7e42015-03-25 02:36:31 -0700644 - Deprecated ``standard_date()``, which now just uses the native ``date()`` with `DateTime constants <http://php.net/manual/en/class.datetime.php#datetime.constants.types>`_.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +0200645 - Changed :php:func:`now()` to work with all timezone strings supported by PHP.
646 - Changed :php:func:`days_in_month()` to use the native ``cal_days_in_month()`` PHP function, if available.
Eric Robertsfe520d52013-07-11 20:59:16 -0500647
Andrey Andreev81c32082012-06-16 21:21:46 +0300648 - :doc:`URL Helper <helpers/url_helper>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -0500649
Andrey Andreevcd3d9db2015-02-02 13:41:01 +0200650 - Deprecated *separator* options **dash** and **underscore** for function :php:func:`url_title()` (they are only aliases for '-' and '_' respectively).
651 - :php:func:`url_title()` will now trim extra dashes from beginning and end.
652 - :php:func:`anchor_popup()` will now fill the *href* attribute with the URL and its JS code will return FALSE instead.
653 - Added JS window name support to the :php:func:`anchor_popup()` function.
654 - Added support for menubar attribute to the :php:func:`anchor_popup()`.
655 - Added support (auto-detection) for HTTP/1.1 response codes 303, 307 in :php:func:`redirect()`.
656 - Changed :php:func:`redirect()` to choose the **refresh** method only on IIS servers, instead of all servers on Windows (when **auto** is used).
657 - Changed :php:func:`anchor()`, :php:func:`anchor_popup()`, and :php:func:`redirect()` to support protocol-relative URLs (e.g. *//ellislab.com/codeigniter*).
Eric Robertsfe520d52013-07-11 20:59:16 -0500658
Andrey Andreevd911fcc2013-01-29 15:14:13 +0200659 - :doc:`HTML Helper <helpers/html_helper>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -0500660
661 - Added more doctypes.
662 - Changed application and environment config files to be loaded in a cascade-like manner.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +0200663 - Changed :php:func:`doctype()` to cache and only load once the doctypes array.
Andrey Andreev59f04262014-02-26 19:04:36 +0200664 - Deprecated functions ``nbs()`` and ``br()``, which are just aliases for the native ``str_repeat()`` with ``&nbsp;`` and ``<br />`` respectively.
Eric Robertsfe520d52013-07-11 20:59:16 -0500665
Andrey Andreevf7c39d62012-11-08 22:01:33 +0200666 - :doc:`Inflector Helper <helpers/inflector_helper>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -0500667
Andrey Andreevcd3d9db2015-02-02 13:41:01 +0200668 - Changed :php:func:`humanize()` to allow passing an input separator as its second parameter.
669 - Changed :php:func:`humanize()` and :php:func:`underscore()` to utilize `mbstring <http://php.net/mbstring>`_, if available.
670 - Changed :php:func:`plural()` and :php:func:`singular()` to avoid double pluralization and support more words.
Eric Robertsfe520d52013-07-11 20:59:16 -0500671
Andrey Andreev53fff912012-11-22 16:57:23 +0200672 - :doc:`Download Helper <helpers/download_helper>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -0500673
Andrey Andreevcd3d9db2015-02-02 13:41:01 +0200674 - Added an optional third parameter to :php:func:`force_download()` that enables/disables sending the actual file MIME type in the Content-Type header (disabled by default).
675 - Added a work-around in :php:func:`force_download()` for a bug Android <= 2.1, where the filename extension needs to be in uppercase.
676 - Added support for reading from an existing file path by passing NULL as the second parameter to :php:func:`force_download()` (useful for large files and/or safely transmitting binary data).
Eric Robertsfe520d52013-07-11 20:59:16 -0500677
Andrey Andreev74ffd172012-10-27 00:41:03 +0300678 - :doc:`Form Helper <helpers/form_helper>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -0500679
Andrey Andreevcd3d9db2015-02-02 13:41:01 +0200680 - :php:func:`form_dropdown()` will now also take an array for unity with other form helpers.
681 - :php:func:`form_prep()` is now DEPRECATED and only acts as an alias for :doc:`common function <general/common_functions>` :php:func:`html_escape()`.
Adrian Voicu92889dd2015-02-05 15:15:46 +0200682 - :php:func:`set_value()` will now also accept a third argument, allowing to turn off HTML escaping of the value.
Eric Robertsfe520d52013-07-11 20:59:16 -0500683
Andrey Andreevf7c39d62012-11-08 22:01:33 +0200684 - :doc:`Security Helper <helpers/security_helper>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -0500685
Andrey Andreevcd3d9db2015-02-02 13:41:01 +0200686 - :php:func:`do_hash()` now uses PHP's native ``hash()`` function (supporting more algorithms) and is deprecated.
687 - :php:func:`strip_image_tags()` is now an alias for the same method in the :doc:`Security Library <libraries/security>`.
Eric Robertsfe520d52013-07-11 20:59:16 -0500688
Andrey Andreevd911fcc2013-01-29 15:14:13 +0200689 - :doc:`Smiley Helper <helpers/smiley_helper>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -0500690
Andrey Andreev631b0b92014-12-04 12:12:54 +0200691 - Deprecated the whole helper as too specific for CodeIgniter.
Eric Robertsfe520d52013-07-11 20:59:16 -0500692 - Removed previously deprecated function ``js_insert_smiley()``.
693 - Changed application and environment config files to be loaded in a cascade-like manner.
694 - The smileys array is now cached and loaded only once.
695
Andrey Andreev0f0b7692012-06-07 14:57:04 +0300696 - :doc:`File Helper <helpers/file_helper>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -0500697
Andrey Andreevcd3d9db2015-02-02 13:41:01 +0200698 - :php:func:`set_realpath()` can now also handle file paths as opposed to just directories.
699 - Added an optional paramater to :php:func:`delete_files()` to enable it to skip deleting files such as *.htaccess* and *index.html*.
Eric Robertsfe520d52013-07-11 20:59:16 -0500700 - Deprecated function ``read_file()`` - it's just an alias for PHP's native ``file_get_contents()``.
701
Andrey Andreevf7c39d62012-11-08 22:01:33 +0200702 - :doc:`String Helper <helpers/string_helper>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -0500703
704 - Deprecated function ``repeater()`` - it's just an alias for PHP's native ``str_repeat()``.
705 - Deprecated function ``trim_slashes()`` - it's just an alias for PHP's native ``trim()`` (with a slash as its second argument).
Andrey Andreevcd3d9db2015-02-02 13:41:01 +0200706 - Deprecated randomization type options **unique** and **encrypt** for funcion :php:func:`random_string()` (they are only aliases for **md5** and **sha1** respectively).
Eric Robertsfe520d52013-07-11 20:59:16 -0500707
Andrey Andreev8963f402013-07-18 16:02:47 +0300708 - :doc:`CAPTCHA Helper <helpers/captcha_helper>` changes include:
709
710 - Added *word_length* and *pool* options to allow customization of the generated word.
711 - Added *colors* configuration to allow customization for the *background*, *border*, *text* and *grid* colors.
Andrey Andreev72b4b3c2013-10-21 14:44:57 +0300712 - Added *filename* to the returned array elements.
Andrey Andreev09546ed2014-08-11 00:11:36 +0300713 - Updated to use `imagepng()` in case that `imagejpeg()` isn't available.
Preetham820f2e72014-11-12 09:10:14 -0500714 - Added **font_size** option to allow customization of font size.
Preethambe7e4932014-12-05 11:13:57 -0500715 - Added **img_id** option to set id attribute of captcha image.
Andrey Andreev8963f402013-07-18 16:02:47 +0300716
Andrey Andreev6ce47462014-02-13 03:28:00 +0200717 - :doc:`Text Helper <helpers/text_helper>` changes include:
718
Andrey Andreevcd3d9db2015-02-02 13:41:01 +0200719 - Changed the default tag for use in :php:func:`highlight_phrase()` to ``<mark>`` (formerly ``<strong>``).
720 - Changed :php:func:`character_limiter()`, :php:func:`word_wrap()` and :php:func:`ellipsize()` to utilize `mbstring <http://php.net/mbstring>`_ or `iconv <http://php.net/iconv>`_, if available.
Andrey Andreev6ce47462014-02-13 03:28:00 +0200721
Andrey Andreevcd3d9db2015-02-02 13:41:01 +0200722 - :doc:`Directory Helper <helpers/directory_helper>` :php:func:`directory_map()` will now append ``DIRECTORY_SEPARATOR`` to directory names in the returned array.
723 - :doc:`Array Helper <helpers/array_helper>` :php:func:`element()` and :php:func:`elements()` now return NULL instead of FALSE when the required elements don't exist.
724 - :doc:`Language Helper <helpers/language_helper>` :php:func:`lang()` now accepts an optional list of additional HTML attributes.
Andrey Andreev0898e232012-11-08 15:13:52 +0200725 - Deprecated the :doc:`Email Helper <helpers/email_helper>` as its ``valid_email()``, ``send_email()`` functions are now only aliases for PHP native functions ``filter_var()`` and ``mail()`` respectively.
Phil Sturgeonf748ebc2011-11-13 19:24:16 +0000726
Andrey Andreevebee5262013-07-17 11:16:24 +0300727- Database
Phil Sturgeonf748ebc2011-11-13 19:24:16 +0000728
Andrey Andreev50a9d862014-01-08 18:53:58 +0200729 - DEPRECATED the 'mysql', 'sqlite', 'mssql' and 'pdo/dblib' (also known as 'pdo/mssql' or 'pdo/sybase') drivers.
Andrey Andreeveaa60c72012-11-06 01:11:22 +0200730 - Added **dsn** configuration setting for drivers that support DSN strings (PDO, PostgreSQL, Oracle, ODBC, CUBRID).
731 - Added **schema** configuration setting (defaults to *public*) for drivers that might need it (currently used by PostgreSQL and ODBC).
Andrey Andreev6c7c8912015-02-19 14:44:18 +0200732 - Added **save_queries** configuration setting to *application/config/database.php* (defaults to ``TRUE``).
733 - Removed **autoinit** configuration setting as it doesn't make sense to instantiate the database class but not connect to the database.
Andrey Andreeveaa60c72012-11-06 01:11:22 +0200734 - Added subdrivers support (currently only used by PDO).
735 - Added an optional database name parameter to ``db_select()``.
Andrey Andreeveaa60c72012-11-06 01:11:22 +0200736 - Removed ``protect_identifiers()`` and renamed internal method ``_protect_identifiers()`` to it instead - it was just an alias.
737 - Renamed internal method ``_escape_identifiers()`` to ``escape_identifiers()``.
738 - Updated ``escape_identifiers()`` to accept an array of fields as well as strings.
739 - MySQL and MySQLi drivers now require at least MySQL version 5.1.
Andrey Andreev3e13ef62014-02-25 15:29:49 +0200740 - Added a ``$persistent`` parameter to ``db_connect()`` and changed ``db_pconnect()`` to be an alias for ``db_connect(TRUE)``.
Andrey Andreeveaa60c72012-11-06 01:11:22 +0200741 - ``db_set_charset()`` now only requires one parameter (collation was only needed due to legacy support for MySQL versions prior to 5.1).
Andrey Andreev3e13ef62014-02-25 15:29:49 +0200742 - ``db_select()`` will now always (if required by the driver) be called by ``db_connect()`` instead of only when initializing.
Andrey Andreeveaa60c72012-11-06 01:11:22 +0200743 - Replaced the ``_error_message()`` and ``_error_number()`` methods with ``error()``, which returns an array containing the last database error code and message.
744 - Improved ``version()`` implementation so that drivers that have a native function to get the version number don't have to be defined in the core ``DB_driver`` class.
Andrey Andreev69edc432012-12-04 13:32:16 +0200745 - Added capability for packages to hold *config/database.php* config files.
Andrey Andreeveaa60c72012-11-06 01:11:22 +0200746 - Added MySQL client compression support.
747 - Added encrypted connections support (for *mysql*, *sqlsrv* and PDO with *sqlsrv*).
748 - Removed :doc:`Loader Class <libraries/loader>` from Database error tracing to better find the likely culprit.
749 - Added support for SQLite3 database driver.
750 - Added Interbase/Firebird database support via the *ibase* driver.
751 - Added ODBC support for ``create_database()``, ``drop_database()`` and ``drop_table()`` in :doc:`Database Forge <database/forge>`.
clawoo1db369f2014-10-22 19:10:55 +0300752 - Added support to binding arrays as ``IN()`` sets in ``query()``.
Phil Sturgeonf748ebc2011-11-13 19:24:16 +0000753
Eric Robertsfe520d52013-07-11 20:59:16 -0500754 - :doc:`Query Builder <database/query_builder>` changes include:
755
756 - Renamed the Active Record class to Query Builder to remove confusion with the Active Record design pattern.
757 - Added the ability to insert objects with ``insert_batch()``.
758 - Added new methods that return the SQL string of queries without executing them: ``get_compiled_select()``, ``get_compiled_insert()``, ``get_compiled_update()``, ``get_compiled_delete()``.
759 - Added an optional parameter that allows to disable escaping (useful for custom fields) for methods ``join()``, ``order_by()``, ``where_in()``, ``or_where_in()``, ``where_not_in()``, ``or_where_not_in()``, ``insert()``, ``insert_batch()``.
760 - Added support for ``join()`` with multiple conditions.
761 - Added support for *USING* in ``join()``.
Andrey Andreev295cfa92013-12-20 11:48:38 +0200762 - Added support for *EXISTS* in ``where()``.
Eric Robertsfe520d52013-07-11 20:59:16 -0500763 - Added seed values support for random ordering with ``order_by(seed, 'RANDOM')``.
764 - Changed ``limit()`` to ignore NULL values instead of always casting to integer.
765 - Changed ``offset()`` to ignore empty values instead of always casting to integer.
766 - Methods ``insert_batch()`` and ``update_batch()`` now return an integer representing the number of rows affected by them.
Andrey Andreev5bf4dcd2014-09-29 20:07:15 +0300767 - Methods ``where()``, ``or_where()``, ``having()`` and ``or_having()`` now convert trailing ``=`` and ``<>``, ``!=`` SQL operators to ``IS NULL`` and ``IS NOT NULL`` respectively when the supplied comparison value is ``NULL``.
Andrey Andreev435e0c22014-12-11 16:30:13 +0200768 - Added method chaining support to ``reset_query()``, ``start_cache()``, ``stop_cache()`` and ``flush_cache()``.
Andrey Andreevff806f92015-03-16 17:05:25 +0200769 - Added an optional second parameter to ``count_all_results()`` to disable resetting of QB values.
Eric Robertsfe520d52013-07-11 20:59:16 -0500770
771 - :doc:`Database Results <database/results>` changes include:
772
773 - Added a constructor to the ``DB_result`` class and moved all driver-specific properties and logic out of the base ``DB_driver`` class to allow better abstraction.
774 - Added method ``unbuffered_row()`` for fetching a row without prefetching the whole result (consume less memory).
775 - Renamed former method ``_data_seek()`` to ``data_seek()`` and made it public.
776
777 - Improved support for the MySQLi driver, including:
778
Andrey Andreev1fb0cc72014-12-17 19:08:35 +0200779 - OOP style usage of the PHP extension is now used, instead of the procedural aliases.
Eric Robertsfe520d52013-07-11 20:59:16 -0500780 - Server version checking is now done via ``mysqli::$server_info`` instead of running an SQL query.
781 - Added persistent connections support for PHP >= 5.3.
Andrey Andreev1fb0cc72014-12-17 19:08:35 +0200782 - Added support for configuring socket pipe connections.
Eric Robertsfe520d52013-07-11 20:59:16 -0500783 - Added support for ``backup()`` in :doc:`Database Utilities <database/utilities>`.
Marcos SF Filho7977e1d2014-01-08 15:34:11 -0200784 - Changed methods ``trans_begin()``, ``trans_commit()`` and ``trans_rollback()`` to use the PHP API instead of sending queries.
Eric Robertsfe520d52013-07-11 20:59:16 -0500785
786 - Improved support of the PDO driver, including:
787
788 - Added support for ``create_database()``, ``drop_database()`` and ``drop_table()`` in :doc:`Database Forge <database/forge>`.
789 - Added support for ``list_fields()`` in :doc:`Database Results <database/results>`.
790 - Subdrivers are now isolated from each other instead of being in one large class.
791
792 - Improved support of the PostgreSQL driver, including:
793
794 - ``pg_version()`` is now used to get the database version number, when possible.
795 - Added ``db_set_charset()`` support.
796 - Added support for ``optimize_table()`` in :doc:`Database Utilities <database/utilities>` (rebuilds table indexes).
797 - Added boolean data type support in ``escape()``.
798 - Added ``update_batch()`` support.
799 - Removed ``limit()`` and ``order_by()`` support for *UPDATE* and *DELETE* queries as PostgreSQL does not support those features.
800 - Added a work-around for dead persistent connections to be re-created after a database restart.
801 - Changed ``db_connect()`` to include the (new) **schema** value into Postgre's **search_path** session variable.
Andrey Andreeva9346aa2013-09-13 16:03:07 +0300802 - ``pg_escape_literal()`` is now used for escaping strings, if available.
Eric Robertsfe520d52013-07-11 20:59:16 -0500803
804 - Improved support of the CUBRID driver, including:
805
806 - Added DSN string support.
807 - Added persistent connections support.
808 - Improved ``list_databases()`` in :doc:`Database Utility <database/utilities>` (until now only the currently used database was returned).
809
810 - Improved support of the MSSQL and SQLSRV drivers, including:
811
812 - Added random ordering support.
813 - Added support for ``optimize_table()`` in :doc:`Database Utility <database/utilities>`.
814 - Added escaping with *QUOTE_IDENTIFIER* setting detection.
815 - Added port handling support for UNIX-based systems (MSSQL driver).
816 - Added *OFFSET* support for SQL Server 2005 and above.
817 - Added ``db_set_charset()`` support (MSSQL driver).
Andrey Andreevba8bf562014-01-21 19:04:18 +0200818 - Added a *scrollable* property to enable configuration of the cursor to use (SQLSRV driver).
819 - Added support and auto-detection for the ``SQLSRV_CURSOR_CLIENT_BUFFERED`` scrollable cursor flag (SQLSRV driver).
820 - Changed default behavior to not use ``SQLSRV_CURSOR_STATIC`` due to performance issues (SQLSRV driver).
Eric Robertsfe520d52013-07-11 20:59:16 -0500821
822 - Improved support of the Oracle (OCI8) driver, including:
823
824 - Added DSN string support (Easy Connect and TNS).
825 - Added support for ``drop_table()`` in :doc:`Database Forge <database/forge>`.
826 - Added support for ``list_databases()`` in :doc:`Database Utilities <database/utilities>`.
827 - Generally improved for speed and cleaned up all of its components.
828 - ``num_rows()`` is now only called explicitly by the developer and no longer re-executes statements.
829
830 - Improved support of the SQLite driver, including:
831
832 - Added support for ``replace()`` in :doc:`Query Builder <database/query_builder>`.
833 - Added support for ``drop_table()`` in :doc:`Database Forge <database/forge>`.
834
835 - :doc:`Database Forge <database/forge>` changes include:
836
837 - Added an optional second parameter to ``drop_table()`` that allows adding the **IF EXISTS** condition, which is no longer the default.
838 - Added support for passing a custom database object to the loader.
Andrey Andreev27f798b2014-01-20 18:19:13 +0200839 - Added support for passing custom table attributes (such as ``ENGINE`` for MySQL) to ``create_table()``.
Eric Robertsfe520d52013-07-11 20:59:16 -0500840 - Added support for usage of the *FIRST* clause in ``add_column()`` for MySQL and CUBRID.
Gabriel Potkányd6183882014-11-06 10:20:11 +0100841 - Added partial support for field comments (MySQL, PostgreSQL, Oracle).
Andrey Andreev27f798b2014-01-20 18:19:13 +0200842 - Deprecated ``add_column()``'s third method. *AFTER* clause should now be added to the field definition array instead.
Eric Robertsfe520d52013-07-11 20:59:16 -0500843 - Overall improved support for all of the drivers.
844
845 - :doc:`Database Utility <database/utilities>` changes include:
846
847 - Added support for passing a custom database object to the loader.
848 - Modified the class to no longer extend :doc:`Database Forge <database/forge>`, which has been a deprecated behavior for awhile.
849 - Overall improved support for all of the drivers.
850 - Added *foreign_key_checks* option to MySQL/MySQLi backup, allowing statement to disable/re-enable foreign key checks to be inserted into the backup output.
851
Andrey Andreevebee5262013-07-17 11:16:24 +0300852- Libraries
Derek Jonesbe3177f2012-07-04 07:02:55 -0700853
Andrey Andreev4a2918a2014-02-05 01:03:46 +0200854 - Added a new :doc:`Encryption Library <libraries/encryption>` to replace the old, largely insecure :doc:`Encrypt Library <libraries/encrypt>`.
855
856 - :doc:`Encrypt Library <libraries/encrypt>` changes include:
857
858 - Deprecated the library in favor of the new :doc:`Encryption Library <libraries/encryption>`.
859 - Added support for hashing algorithms other than SHA1 and MD5.
860 - Removed previously deprecated ``sha1()`` method.
861
Jonatas Miguel982a9f22012-10-24 18:34:40 +0100862 - :doc:`Session Library <libraries/sessions>` changes include:
RS710fc64092012-01-03 12:50:55 -0200863
Andrey Andreev3fd1c272015-01-19 15:35:52 +0200864 - Completely re-written the library to use self-contained drivers via ``$config['sess_driver']``.
865 - Added 'files', 'database', 'redis' and 'memcached' drivers (using 'files' by default).
866 - Added ``$config['sess_save_path']`` setting to specify where the session data is stored, depending on the driver.
867 - Dropped support for storing session data in cookies (which renders ``$config['sess_encrypt_cookie']`` useless and is therefore also removed).
868 - Dropped official support for storing session data in databases other than MySQL and PostgreSQL.
869 - Changed table structure for the 'database' driver.
870 - Added a new **tempdata** feature that allows setting userdata items with expiration time (``mark_as_temp()``, ``tempdata()``, ``set_tempdata()``, ``unset_tempdata()``).
Andrey Andreevecc260e2014-01-24 14:20:13 +0200871 - Changed method ``keep_flashdata()`` to also accept an array of keys.
872 - Changed methods ``userdata()``, ``flashdata()`` to return an array of all userdata/flashdata when no parameter is passed.
873 - Deprecated method ``all_userdata()`` - it is now just an alias for ``userdata()`` with no parameters.
874 - Added method ``has_userdata()`` that verifies the existence of a userdata item.
Andrey Andreeve18de502013-07-17 19:59:20 +0300875 - Added *debug* level log messages for key events in the session validation process.
Andrey Andreev3fd1c272015-01-19 15:35:52 +0200876 - Dropped support for the *sess_match_useragent* option.
Eric Robertsfe520d52013-07-11 20:59:16 -0500877
878 - :doc:`File Uploading Library <libraries/file_uploading>` changes include:
879
Andrey Andreev2cf4c9b2014-02-21 15:01:48 +0200880 - Added method chaining support.
Andrey Andreeve7d017b2014-02-25 12:23:34 +0200881 - Added support for using array notation in file field names.
Andrey Andreev2cf4c9b2014-02-21 15:01:48 +0200882 - Added **max_filename_increment** and **file_ext_tolower** configuration settings.
883 - Added **min_width** and **min_height** configuration settings for images.
884 - Added **mod_mime_fix** configuration setting to disable suffixing multiple file extensions with an underscore.
885 - Added the possibility pass **allowed_types** as an array.
886 - Added an ``$index`` parameter to the method ``data()``.
887 - Added a ``$reset`` parameter to method ``initialize()``.
Eric Robertsfe520d52013-07-11 20:59:16 -0500888 - Removed method ``clean_file_name()`` and its usage in favor of :doc:`Security Library <libraries/security>`'s ``sanitize_filename()``.
Andrey Andreev2cf4c9b2014-02-21 15:01:48 +0200889 - Removed method ``mimes_types()``.
Andrey Andreevf38c9c22014-08-27 14:56:31 +0300890 - Changed ``CI_Upload::_prep_filename()`` to simply replace all (but the last) dots in the filename with underscores, instead of suffixing them.
Eric Robertsfe520d52013-07-11 20:59:16 -0500891
Andrey Andreev43d7fa72014-01-09 17:29:45 +0200892 - :doc:`Calendar Library <libraries/calendar>` changes include:
Marcos SF Filho7977e1d2014-01-08 15:34:11 -0200893
Andrey Andreev6f6102c2014-02-08 19:11:40 +0200894 - Added method chaining support.
Marcos SF Filhoa593e3e2014-01-08 18:22:12 -0200895 - Added configuration to generate days of other months instead of blank cells.
Andrey Andreev9bf3cf22014-02-18 16:39:46 +0200896 - Added auto-configuration for *next_prev_url* if it is empty and *show_prev_next* is set to TRUE.
897 - Added support for templating via an array in addition to the encoded string.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +0200898 - Changed method ``get_total_days()`` to be an alias for :doc:`Date Helper <helpers/date_helper>` :php:func:`days_in_month()`.
Marcos SF Filho7977e1d2014-01-08 15:34:11 -0200899
Andrey Andreev43d7fa72014-01-09 17:29:45 +0200900 - :doc:`Cart Library <libraries/cart>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -0500901
Andrey Andreev631b0b92014-12-04 12:12:54 +0200902 - Deprecated the library as too specific for CodeIgniter.
Eric Robertsfe520d52013-07-11 20:59:16 -0500903 - Added method ``remove()`` to remove a cart item, updating with quantity of 0 seemed like a hack but has remained to retain compatibility.
904 - Added method ``get_item()`` to enable retrieving data for a single cart item.
905 - Added unicode support for product names.
Andrey Andreev0bd390c2014-02-13 14:26:50 +0200906 - Added support for disabling product name strictness via the ``$product_name_safe`` property.
907 - Changed ``insert()`` method to auto-increment quantity for an item when inserted twice instead of resetting it.
Ahmad Anbar2702a3b2014-03-14 16:53:44 +0200908 - Changed ``update()`` method to support updating all properties attached to an item and not to require 'qty'.
Eric Robertsfe520d52013-07-11 20:59:16 -0500909
Andrey Andreev43d7fa72014-01-09 17:29:45 +0200910 - :doc:`Image Manipulation Library <libraries/image_lib>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -0500911
912 - The ``initialize()`` method now only sets existing class properties.
913 - Added support for 3-length hex color values for *wm_font_color* and *wm_shadow_color* properties, as well as validation for them.
914 - Class properties *wm_font_color*, *wm_shadow_color* and *wm_use_drop_shadow* are now protected, to avoid breaking the ``text_watermark()`` method if they are set manually after initialization.
915 - If property *maintain_ratio* is set to TRUE, ``image_reproportion()`` now doesn't need both width and height to be specified.
916 - Property *maintain_ratio* is now taken into account when resizing images using ImageMagick library.
Andrey Andreevdb037db2015-01-12 13:45:12 +0200917 - Added support for maintaining transparency for PNG images when watermarking.
Andrey Andreev45965742014-08-27 20:40:11 +0300918 - Added a **file_permissions** setting.
Eric Robertsfe520d52013-07-11 20:59:16 -0500919
Andrey Andreev43d7fa72014-01-09 17:29:45 +0200920 - :doc:`Form Validation Library <libraries/form_validation>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -0500921
922 - Added method ``error_array()`` to return all error messages as an array.
923 - Added method ``set_data()`` to set an alternative data array to be validated instead of the default ``$_POST``.
924 - Added method ``reset_validation()`` which resets internal validation variables in case of multiple validation routines.
925 - Added support for setting error delimiters in the config file via ``$config['error_prefix']`` and ``$config['error_suffix']``.
926 - Internal method ``_execute()`` now considers input data to be invalid if a specified rule is not found.
927 - Removed method ``is_numeric()`` as it exists as a native PHP function and ``_execute()`` will find and use that (the **is_numeric** rule itself is deprecated since 1.6.1).
928 - Native PHP functions used as rules can now accept an additional parameter, other than the data itself.
929 - Updated method ``set_rules()`` to accept an array of rules as well as a string.
930 - Fields that have empty rules set no longer run through validation (and therefore are not considered erroneous).
931 - Added rule **differs** to check if the value of a field differs from the value of another field.
932 - Added rule **valid_url**.
Lance Vincent8f72ecb2015-01-28 22:46:49 +0800933 - Added rule **in_list** to check if the value of a field is within a given list.
Eric Robertsfe520d52013-07-11 20:59:16 -0500934 - Added support for named parameters in error messages.
935 - :doc:`Language <libraries/language>` line keys must now be prefixed with **form_validation_**.
936 - Added rule **alpha_numeric_spaces**.
Ahmedul Haque Abid7945d302014-01-09 16:50:23 +0600937 - Added support for custom error messages per field rule.
Andrey Andreev4b90a372014-03-10 10:24:24 +0200938 - Added support for callable rules when they are passed as an array.
Andrey Andreev95496662014-06-01 00:00:13 +0300939 - Added support for non-ASCII domains in **valid_email** rule, depending on the Intl extension.
Andrey Andreevcc778882015-03-13 11:24:30 +0200940 - Changed the debug message about an error message not being set to include the rule name it is about.
Eric Robertsfe520d52013-07-11 20:59:16 -0500941
942 - :doc:`Caching Library <libraries/caching>` changes include:
943
944 - Added Wincache driver.
945 - Added Redis driver.
946 - Added a *key_prefix* option for cache IDs.
Tyler Brownell530a3da2013-07-30 10:20:50 -0400947 - Updated driver ``is_supported()`` methods to log at the "debug" level.
Andrey Andreev43d7fa72014-01-09 17:29:45 +0200948 - Added option to store raw values instead of CI-formatted ones (APC, Memcache).
949 - Added atomic increment/decrement feature via ``increment()``, ``decrement()``.
Eric Robertsfe520d52013-07-11 20:59:16 -0500950
Andrey Andreev505b3d62014-02-08 18:24:00 +0200951 - :doc:`E-mail Library <libraries/email>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -0500952
Andrey Andreevc8097262014-01-10 14:45:31 +0200953 - Added a custom filename parameter to ``attach()`` as ``$this->email->attach($filename, $disposition, $newname)``.
954 - Added possibility to send attachment as buffer string in ``attach()`` as ``$this->email->attach($buffer, $disposition, $newname, $mime)``.
Petr Heralecky63f07cb2014-01-10 16:50:49 +0100955 - Added possibility to attach remote files by passing a URL.
Andrey Andreevc8097262014-01-10 14:45:31 +0200956 - Added method ``attachment_cid()`` to enable embedding inline attachments into HTML.
Eric Robertsfe520d52013-07-11 20:59:16 -0500957 - Added dsn (delivery status notification) option.
Andrey Andreevc8097262014-01-10 14:45:31 +0200958 - Renamed method ``_set_header()`` to ``set_header()`` and made it public to enable adding custom headers.
Eric Robertsfe520d52013-07-11 20:59:16 -0500959 - Successfully sent emails will automatically clear the parameters.
960 - Added a *return_path* parameter to the ``from()`` method.
961 - Removed the second parameter (character limit) from internal method ``_prep_quoted_printable()`` as it is never used.
962 - Internal method ``_prep_quoted_printable()`` will now utilize the native ``quoted_printable_encode()``, ``imap_8bit()`` functions (if available) when CRLF is set to "\r\n".
963 - Default charset now relies on the global ``$config['charset']`` setting.
964 - Removed unused protected method ``_get_ip()`` (:doc:`Input Library <libraries/input>`'s ``ip_address()`` should be used anyway).
965 - Internal method ``_prep_q_encoding()`` now utilizes PHP's *mbstring* and *iconv* extensions (when available) and no longer has a second (``$from``) argument.
966 - Added an optional parameter to ``print_debugger()`` to allow specifying which parts of the message should be printed ('headers', 'subject', 'body').
Andrey Andreevc8097262014-01-10 14:45:31 +0200967 - Added SMTP keepalive option to avoid opening the connection for each ``send()`` call. Accessible as ``$smtp_keepalive``.
Eric Robertsfe520d52013-07-11 20:59:16 -0500968 - Public method ``set_header()`` now filters the input by removing all "\\r" and "\\n" characters.
Andrey Andreev95496662014-06-01 00:00:13 +0300969 - Added support for non-ASCII domains in ``valid_email()``, depending on the Intl extension.
Eric Robertsfe520d52013-07-11 20:59:16 -0500970
971 - :doc:`Pagination Library <libraries/pagination>` changes include:
972
Andrey Andreevaef63e52014-02-13 14:49:55 +0200973 - Deprecated usage of the "anchor_class" setting (use the new "attributes" setting instead).
Andrey Andreev6f6102c2014-02-08 19:11:40 +0200974 - Added method chaining support to ``initialize()`` method.
Eric Robertsfe520d52013-07-11 20:59:16 -0500975 - Added support for the anchor "rel" attribute.
976 - Added support for setting custom attributes.
Andrey Andreevaef63e52014-02-13 14:49:55 +0200977 - Added support for language translations of the *first_link*, *next_link*, *prev_link* and *last_link* values.
Takayuki Sakai8ed90fa2014-06-13 19:59:27 +0900978 - Added support for ``$config['num_links'] = 0`` configuration.
Andrey Andreev0da50122015-01-20 13:30:05 +0200979 - Added ``$config['reuse_query_string']`` to allow automatic repopulation of query string arguments, combined with normal URI segments.
980 - Added ``$config['use_global_url_suffix']`` to allow overriding the library 'suffix' value with that of the global ``$config['url_suffix']`` setting.
981 - Removed the default ``&nbsp;`` from a number of the configuration variables.
Eric Robertsfe520d52013-07-11 20:59:16 -0500982
Eric Robertsfe520d52013-07-11 20:59:16 -0500983 - :doc:`Profiler Library <general/profiling>` changes include:
984
985 - Database object names are now being displayed.
986 - The sum of all queries running times in seconds is now being displayed.
Andrey Andreev0b97f8e2013-07-17 12:01:15 +0300987 - Added support for displaying the HTTP DNT ("Do Not Track") header.
Andrey Andreevdc53d7b2014-01-07 12:12:11 +0200988 - Added support for displaying ``$_FILES``.
Eric Robertsfe520d52013-07-11 20:59:16 -0500989
990 - :doc:`Migration Library <libraries/migration>` changes include:
991
992 - Added support for timestamp-based migrations (enabled by default).
993 - Added ``$config['migration_type']`` to allow switching between *sequential* and *timestamp* migrations.
994
Andrey Andreevdc53d7b2014-01-07 12:12:11 +0200995 - :doc:`XML-RPC Library <libraries/xmlrpc>` changes include:
996
997 - Added the ability to use a proxy.
998 - Added Basic HTTP authentication support.
999
Andrey Andreev27e91a02014-01-09 01:00:48 +02001000 - :doc:`User Agent Library <libraries/user_agent>` changes include:
1001
1002 - Added check to detect if robots are pretending to be mobile clients (helps with e.g. Google indexing mobile website versions).
1003 - Added method ``parse()`` to allow parsing a custom user-agent string, different from the current visitor's.
1004
Andrey Andreev1f590952014-02-08 19:50:26 +02001005 - :doc:`HTML Table Library <libraries/table>` changes include:
1006
1007 - Added method chaining support.
1008 - Added support for setting table class defaults in a config file.
1009
garrettair4a25cff2014-12-03 15:17:32 -06001010 - :doc:`Zip Library <libraries/zip>` changes include:
1011
1012 - Method ``read_file()`` can now also alter the original file path/name while adding files to an archive.
Andrey Andreev309d7012014-12-04 11:47:26 +02001013 - Added support for changing the compression level.
garrettair4a25cff2014-12-03 15:17:32 -06001014
Andrey Andreevbe1496d2014-02-11 22:48:45 +02001015 - :doc:`Trackback Library <libraries/trackback>` method ``receive()`` will now utilize ``iconv()`` if it is available but ``mb_convert_encoding()`` is not.
Eric Robertsfe520d52013-07-11 20:59:16 -05001016
Andrey Andreevebee5262013-07-17 11:16:24 +03001017- Core
Phil Sturgeonf748ebc2011-11-13 19:24:16 +00001018
Andrey Andreev30d53242014-01-16 14:41:46 +02001019 - :doc:`Routing <general/routing>` changes include:
1020
1021 - Added support for multiple levels of controller directories.
1022 - Added support for per-directory *default_controller* and *404_override* classes.
1023 - Added possibility to route requests using HTTP verbs.
1024 - Added possibility to route requests using callbacks.
1025 - Added a new reserved route (*translate_uri_dashes*) to allow usage of dashes in the controller and method URI segments.
1026 - Deprecated methods ``fetch_directory()``, ``fetch_class()`` and ``fetch_method()`` in favor of their respective public properties.
1027 - Removed method ``_set_overrides()`` and moved its logic to the class constructor.
1028
Andrey Andreevd4516e32012-10-31 14:44:38 +02001029 - :doc:`URI Library <libraries/uri>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -05001030
Andrey Andreev08fef7d2014-01-15 18:37:01 +02001031 - Added conditional PCRE UTF-8 support to the "invalid URI characters" check and removed the ``preg_quote()`` call from it to allow more flexibility.
1032 - Renamed method ``_filter_uri()`` to ``filter_uri()``.
Andrey Andreevbfa233f2014-12-05 12:00:11 +02001033 - Changed method ``filter_uri()`` to accept by reference and removed its return value.
Eric Robertsfe520d52013-07-11 20:59:16 -05001034 - Changed private methods to protected so that MY_URI can override them.
1035 - Renamed internal method ``_parse_cli_args()`` to ``_parse_argv()``.
1036 - Renamed internal method ``_detect_uri()`` to ``_parse_request_uri()``.
1037 - Changed ``_parse_request_uri()`` to accept absolute URIs for compatibility with HTTP/1.1 as per `RFC2616 <http://www.ietf.org/rfc/rfc2616.txt>`.
1038 - Added protected method ``_parse_query_string()`` to URI paths in the the **QUERY_STRING** value, like ``_parse_request_uri()`` does.
Andrey Andreev0ae4e6c2015-02-18 21:14:55 +02001039 - Changed URI string detection logic to always default to **REQUEST_URI** unless configured otherwise or under CLI.
Andrey Andreev30d53242014-01-16 14:41:46 +02001040 - Removed methods ``_remove_url_suffix()``, ``_explode_segments()`` and moved their logic into ``_set_uri_string()``.
1041 - Removed method ``_fetch_uri_string()`` and moved its logic into the class constructor.
1042 - Removed method ``_reindex_segments()``.
Eric Robertsfe520d52013-07-11 20:59:16 -05001043
Jonatas Miguel982a9f22012-10-24 18:34:40 +01001044 - :doc:`Loader Library <libraries/loader>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -05001045
Andrey Andreev61a7b8f2014-01-07 13:36:50 +02001046 - Added method chaining support.
Eric Robertsfe520d52013-07-11 20:59:16 -05001047 - Added method ``get_vars()`` to the Loader to retrieve all variables loaded with ``$this->load->vars()``.
1048 - ``_ci_autoloader()`` is now a protected method.
1049 - Added autoloading of drivers with ``$autoload['drivers']``.
1050 - ``$config['rewrite_short_tags']`` now has no effect when using PHP 5.4 as ``<?=`` will always be available.
1051 - Changed method ``config()`` to return whatever ``CI_Config::load()`` returns instead of always being void.
Andrey Andreev88cf55b2014-01-17 15:38:30 +02001052 - Added support for library and model aliasing on autoload.
Andrey Andreev519f87a2013-07-23 17:16:10 +03001053 - Changed method ``is_loaded()`` to ask for the (case sensitive) library name instead of its instance name.
1054 - Removed ``$_base_classes`` property and unified all class data in ``$_ci_classes`` instead.
Andrey Andreevb69cbcb2013-10-16 13:59:43 +03001055 - Added method ``clear_vars()`` to allow clearing the cached variables for views.
Eric Robertsfe520d52013-07-11 20:59:16 -05001056
Jonatas Miguel982a9f22012-10-24 18:34:40 +01001057 - :doc:`Input Library <libraries/input>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -05001058
Andrey Andreev9187ed32015-02-28 19:54:17 +02001059 - Deprecated the ``$config['global_xss_filtering']`` setting.
Eric Robertsfe520d52013-07-11 20:59:16 -05001060 - Added ``method()`` to retrieve ``$_SERVER['REQUEST_METHOD']``.
1061 - Added support for arrays and network addresses (e.g. 192.168.1.1/24) for use with the *proxy_ips* setting.
1062 - Added method ``input_stream()`` to aid in using **php://input** stream data such as one passed via PUT, DELETE and PATCH requests.
1063 - Changed method ``valid_ip()`` to use PHP's native ``filter_var()`` function.
1064 - Changed internal method ``_sanitize_globals()`` to skip enforcing reversal of *register_globals* in PHP 5.4+, where this functionality no longer exists.
1065 - Changed methods ``get()``, ``post()``, ``get_post()``, ``cookie()``, ``server()``, ``user_agent()`` to return NULL instead of FALSE when no value is found.
Andrey Andreev80a16b12014-01-08 17:19:03 +02001066 - Changed default value of the ``$xss_clean`` parameter to NULL for all methods that utilize it, the default value is now determined by the ``$config['global_xss_filtering']`` setting.
vlakoffe8e56d72013-08-12 01:36:39 +02001067 - Added method ``post_get()`` and changed ``get_post()`` to search in GET data first. Both methods' names now properly match their GET/POST data search priorities.
Eric Robertsfe520d52013-07-11 20:59:16 -05001068 - Changed method ``_fetch_from_array()`` to parse array notation in field name.
Andrey Andreevef29f832014-12-02 18:03:47 +02001069 - Changed method ``_fetch_from_array()`` to allow retrieving multiple fields at once.
Andrey Andreevfd0aabb2013-09-23 13:18:20 +03001070 - Added an option for ``_clean_input_keys()`` to return FALSE instead of terminating the whole script.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +02001071 - Deprecated the ``is_cli_request()`` method, it is now an alias for the new :php:func:`is_cli()` common function.
Andrey Andreev8850e372014-02-27 21:56:06 +02001072 - Added an ``$xss_clean`` parameter to method ``user_agent()`` and removed the ``$user_agent`` property.
Ignasimg7325fce2015-02-26 02:49:39 +01001073 - Added property ``$raw_input_stream`` to access **php://input** data.
Eric Robertsfe520d52013-07-11 20:59:16 -05001074
Jonatas Miguel982a9f22012-10-24 18:34:40 +01001075 - :doc:`Common functions <general/common_functions>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -05001076
Andrey Andreevcd3d9db2015-02-02 13:41:01 +02001077 - Added function :php:func:`get_mimes()` to return the *application/config/mimes.php* array.
1078 - Added support for HTTP code 303 ("See Other") in :php:func:`set_status_header()`.
1079 - Removed redundant conditional to determine HTTP server protocol in :php:func:`set_status_header()`.
Andrey Andreev4b838af2014-10-28 23:46:45 +02001080 - Renamed ``_exception_handler()`` to ``_error_handler()`` and replaced it with a real exception handler.
1081 - Changed ``_error_handler()`` to respect php.ini *display_errors* setting.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +02001082 - Added function :php:func:`is_https()` to check if a secure connection is used.
1083 - Added function :php:func:`is_cli()` to replace the ``CI_Input::is_cli_request()`` method.
1084 - Added function :php:func:`function_usable()` to work around a bug in `Suhosin <http://www.hardened-php.net/suhosin/>`.
1085 - Removed the third (`$php_error`) argument from function :php:func:`log_message()`.
Andrey Andreevc26b9eb2014-02-24 11:31:36 +02001086 - Changed internal function ``load_class()`` to accept a constructor parameter instead of (previously unused) class name prefix.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +02001087 - Removed default parameter value of :php:func:`is_php()`.
1088 - Added a second argument ``$double_encode`` to :php:func:`html_escape()`.
Andrey Andreevc545c012015-02-19 11:36:10 +02001089 - Changed function :php:func:`config_item()` to return NULL instead of FALSE when no value is found.
1090 - Changed function :php:func:`set_status_header()` to return immediately when run under CLI.
Eric Robertsfe520d52013-07-11 20:59:16 -05001091
Jonatas Miguel982a9f22012-10-24 18:34:40 +01001092 - :doc:`Output Library <libraries/output>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -05001093
1094 - Added a second argument to method ``set_content_type()`` that allows setting the document charset as well.
1095 - Added methods ``get_content_type()`` and ``get_header()``.
1096 - Added method ``delete_cache()``.
Andrey Andreeva704aa72014-12-04 12:37:07 +02001097 - Added configuration option ``$config['cache_query_string']`` to enable taking the query string into account when caching.
Andrey Andreev155ee722014-01-10 15:50:54 +02001098 - Changed caching behavior to compress the output before storing it, if ``$config['compress_output']`` is enabled.
Eric Robertsfe520d52013-07-11 20:59:16 -05001099
Andrey Andreev5232ba02012-10-27 15:25:05 +03001100 - :doc:`Config Library <libraries/config>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -05001101
1102 - Changed ``site_url()`` method to accept an array as well.
vlakoff184cf1b2013-07-24 03:43:39 +02001103 - Removed internal method ``_assign_to_config()`` and moved its implementation to *CodeIgniter.php* instead.
vlakoff90f316a2013-07-25 04:33:56 +02001104 - ``item()`` now returns NULL instead of FALSE when the required config item doesn't exist.
vlakoff4c07fce2013-10-25 01:20:32 +02001105 - Added an optional second parameter to both ``base_url()`` and ``site_url()`` that allows enforcing of a protocol different than the one in the *base_url* configuration setting.
Andrey Andreev815ac8a2014-10-28 21:32:20 +02001106 - Added HTTP "Host" header character validation to prevent cache poisoning attacks when ``base_url`` auto-detection is used.
Eric Robertsfe520d52013-07-11 20:59:16 -05001107
Jonatas Miguel982a9f22012-10-24 18:34:40 +01001108 - :doc:`Security Library <libraries/security>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -05001109
Andrey Andreev6c520962014-08-18 12:24:42 +03001110 - Added ``$config['csrf_regeneration']``, which makes CSRF token regeneration optional.
1111 - Added ``$config['csrf_exclude_uris']``, allowing for exclusion of URIs from the CSRF protection (regular expressions are supported).
Andrey Andreev487ccc92014-08-27 16:26:23 +03001112 - Added method ``strip_image_tags()``.
1113 - Added method ``get_random_bytes()`` and switched CSRF & XSS token generation to use it.
Andrey Andreeve2650972013-08-06 12:38:38 +03001114 - Modified method ``sanitize_filename()`` to read a public ``$filename_bad_chars`` property for getting the invalid characters list.
Kyle Valade2761ff42014-07-13 16:11:19 -07001115 - Return status code of 403 instead of a 500 if CSRF protection is enabled but a token is missing from a request.
Eric Robertsfe520d52013-07-11 20:59:16 -05001116
Andrey Andreevb11b9f32012-11-26 23:01:24 +02001117 - :doc:`Language Library <libraries/language>` changes include:
Eric Robertsfe520d52013-07-11 20:59:16 -05001118
Andrey Andreev3cfd5392013-12-19 16:08:12 +02001119 - Changed method ``load()`` to filter the language name with ``ctype_alpha()``.
Gabriel Potkány0e924ce2014-11-06 11:35:46 +01001120 - Changed method ``load()`` to also accept an array of language files.
vlakoffd5ce5082014-04-25 10:13:04 +02001121 - Added an optional second parameter to method ``line()`` to disable error logging for line keys that were not found.
Claudio Galdiolo56560be2015-01-29 11:39:50 -05001122 - Language files are now loaded in a cascading style with the one in **system/** always loaded and overridden afterwards, if another one is found.
Eric Robertsfe520d52013-07-11 20:59:16 -05001123
Andrey Andreev4b85e772014-01-08 14:02:01 +02001124 - :doc:`Hooks Library <general/hooks>` changes include:
Andrey Andreevbe1496d2014-02-11 22:48:45 +02001125
Andrey Andreev83514042014-03-06 00:28:55 +02001126 - Added support for closure hooks (or anything that ``is_callable()`` returns TRUE for).
Andrey Andreev4b85e772014-01-08 14:02:01 +02001127 - Renamed method ``_call_hook()`` to ``call_hook()``.
1128 - Class instances are now stored in order to maintain their state.
1129
Andrey Andreevbe1496d2014-02-11 22:48:45 +02001130 - UTF-8 Library changes include:
1131
1132 - ``UTF8_ENABLED`` now requires only one of `Multibyte String <http://php.net/mbstring>`_ or `iconv <http://php.net/iconv>`_ to be available instead of both.
Andrey Andreevbb3edf12014-02-20 17:51:41 +02001133 - Changed method ``clean_string()`` to utilize ``mb_convert_encoding()`` if it is available.
Andrey Andreevcd74d362014-02-15 21:44:02 +02001134 - Renamed method ``_is_ascii()`` to ``is_ascii()`` and made it public.
Andrey Andreevbe1496d2014-02-11 22:48:45 +02001135
Andrey Andreev45965742014-08-27 20:40:11 +03001136 - Log Library changes include:
1137
1138 - Added a ``$config['log_file_permissions']`` setting.
1139 - Changed the library constructor to try to create the **log_path** directory if it doesn't exist.
Gabriel Potkány9c00ab02014-12-19 21:47:55 +01001140 - Added support for microseconds ("u" date format character) in ``$config['log_date_format']``.
Andrey Andreev45965742014-08-27 20:40:11 +03001141
Andrey Andreev6eb599a2015-03-30 19:53:38 +03001142 - Added :doc:`compatibility layers <general/compatibility_functions>` for:
Andrey Andreev02545892014-02-19 23:49:31 +02001143
1144 - `Multibyte String <http://php.net/mbstring>`_ (limited support).
Andrey Andreeva5621b82014-05-09 11:23:08 +03001145 - `Hash <http://php.net/hash>`_ (``hash_equals()``, ``hash_pbkdf2()``).
Andrey Andreev02545892014-02-19 23:49:31 +02001146 - `Password Hashing <http://php.net/password>`_.
Andrey Andreev6500bc72014-07-07 14:11:26 +03001147 - `Standard Functions ``array_column()``, ``array_replace()``, ``array_replace_recursive()``, ``hex2bin()``, ``quoted_printable_encode()``.
Andrey Andreev02545892014-02-19 23:49:31 +02001148
Andrey Andreevebee5262013-07-17 11:16:24 +03001149 - Removed ``CI_CORE`` boolean constant from *CodeIgniter.php* (no longer Reactor and Core versions).
Andrey Andreevebee5262013-07-17 11:16:24 +03001150 - Added support for HTTP-Only cookies with new config option *cookie_httponly* (default FALSE).
Andrey Andreevebee5262013-07-17 11:16:24 +03001151 - ``$config['time_reference']`` now supports all timezone strings supported by PHP.
Andrey Andreev4b838af2014-10-28 23:46:45 +02001152 - Fatal PHP errors are now also passed to ``_error_handler()``, so they can be logged.
Eric Robertsfe520d52013-07-11 20:59:16 -05001153
Phil Sturgeonf748ebc2011-11-13 19:24:16 +00001154
1155Bug fixes for 3.0
Andrey Andreeve36d0482015-04-04 21:55:09 +03001156-----------------
Phil Sturgeonf748ebc2011-11-13 19:24:16 +00001157
Andrey Andreev79922c02012-05-23 12:27:17 +03001158- Fixed a bug where ``unlink()`` raised an error if cache file did not exist when you try to delete it.
Andrey Andreev26902142014-02-07 18:16:09 +02001159- Fixed a bug (#181) - a typo in the form validation language file.
1160- Fixed a bug (#159, #163) - :doc:`Query Builder <database/query_builder>` nested transactions didn't work properly due to ``$_trans_depth`` not being incremented.
Andrey Andreev5a1e5e32012-06-12 11:28:26 +03001161- Fixed a bug (#737, #75) - :doc:`Pagination <libraries/pagination>` anchor class was not set properly when using initialize method.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +02001162- Fixed a bug (#419) - :doc:`URL Helper <helpers/url_helper>` :php:func:`auto_link()` didn't recognize URLs that come after a word boundary.
Andrey Andreev3bc548e2012-12-17 10:48:02 +02001163- Fixed a bug (#724) - :doc:`Form Validation Library <libraries/form_validation>` rule **is_unique** didn't check if a database connection exists.
1164- Fixed a bug (#647) - :doc:`Zip Library <libraries/zip>` internal method ``_get_mod_time()`` didn't suppress possible "stat failed" errors generated by ``filemtime()``.
Andrey Andreeva1ff8b32013-02-19 15:08:31 +02001165- Fixed a bug (#157, #174) - :doc:`Image Manipulation Library <libraries/image_lib>` method ``clear()`` didn't completely clear properties.
1166- Fixed a bug where :doc:`Database Forge <database/forge>` method ``create_table()`` with PostgreSQL database could lead to fetching the whole table.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +02001167- Fixed a bug (#795) - :doc:`Form Helper <helpers/form_helper>` :php:func:`form_open()` didn't add the default form *method* and *accept-charset* when an empty array is passed to it.
1168- Fixed a bug (#797) - :doc:`Date Helper <helpers/date_helper>` :php:func:`timespan()` was using incorrect seconds for year and month.
Andrey Andreev26902142014-02-07 18:16:09 +02001169- Fixed a bug in :doc:`Cart Library <libraries/cart>` method ``contents()`` where if called without a TRUE (or equal) parameter, it would fail due to a typo.
Andrey Andreev1f26edc2012-06-07 16:13:54 +03001170- Fixed a bug (#406) - SQLSRV DB driver not returning resource on ``db_pconnect()``.
Andrey Andreev26902142014-02-07 18:16:09 +02001171- Fixed a bug in :doc:`Image Manipulation Library <libraries/image_lib>` method ``gd_loaded()`` where it was possible for the script execution to end or a PHP E_WARNING message to be emitted.
Andrey Andreev79922c02012-05-23 12:27:17 +03001172- Fixed a bug in the :doc:`Pagination library <libraries/pagination>` where when use_page_numbers=TRUE previous link and page 1 link did not have the same url.
Andrey Andreev26902142014-02-07 18:16:09 +02001173- Fixed a bug (#561) - errors in :doc:`XML-RPC Library <libraries/xmlrpc>` were not properly escaped.
1174- Fixed a bug (#904) - :doc:`Loader Library <libraries/loader>` method ``initialize()`` caused a PHP Fatal error to be triggered if error level E_STRICT is used.
1175- Fixed a hosting edge case where an empty ``$_SERVER['HTTPS']`` variable would evaluate to 'on'.
1176- Fixed a bug (#154) - :doc:`Session Library <libraries/sessions>` method ``sess_update()`` caused the session to be destroyed on pages where multiple AJAX requests were executed at once.
1177- Fixed a possible bug in :doc:`Input Libary <libraries/input>` method ``is_ajax_request()`` where some clients might not send the X-Requested-With HTTP header value exactly as 'XmlHttpRequest'.
1178- Fixed a bug (#1039) - :doc:`Database Utilities <database/utilities>` internal method ``_backup()`` method failed for the 'mysql' driver due to a table name not being escaped.
1179- Fixed a bug (#1070) - ``CI_DB_driver::initialize()`` didn't set a character set if a database is not selected.
Andrey Andreev2cdd4832014-02-07 21:39:25 +02001180- Fixed a bug (#177) - :doc:`Form Validation Library <libraries/form_validation>` method ``set_value()`` didn't set the default value if POST data is NULL.
Andrey Andreev26902142014-02-07 18:16:09 +02001181- Fixed a bug (#68, #414) - :Oracle's ``escape_str()`` didn't properly escape LIKE wild characters.
1182- Fixed a bug (#81) - ODBC's ``list_fields()`` and ``field_data()`` methods skipped the first column due to ``odbc_field_*()`` functions' index starting at 1 instead of 0.
Andrey Andreevf6779f52014-02-05 23:15:26 +02001183- Fixed a bug (#129) - ODBC's ``num_rows()`` method returned -1 in some cases, due to not all subdrivers supporting the ``odbc_num_rows()`` function.
Andrey Andreev26902142014-02-07 18:16:09 +02001184- Fixed a bug (#153) - E_NOTICE being generated by ``getimagesize()`` in the :doc:`File Uploading Library <libraries/file_uploading>`.
Andrey Andreev4be5de12012-03-02 15:45:41 +02001185- Fixed a bug (#611) - SQLSRV's error handling methods used to issue warnings when there's no actual error.
Jonatas Miguel982a9f22012-10-24 18:34:40 +01001186- Fixed a bug (#1036) - ``is_write_type()`` method in the :doc:`Database Library <database/index>` didn't return TRUE for RENAME queries.
Andrey Andreev26902142014-02-07 18:16:09 +02001187- Fixed a bug in PDO's ``_version()`` method where it used to return the client version as opposed to the server one.
1188- Fixed a bug in PDO's ``insert_id()`` method where it could've failed if it's used with Postgre versions prior to 8.1.
1189- Fixed a bug in CUBRID's ``affected_rows()`` method where a connection resource was passed to ``cubrid_affected_rows()`` instead of a result.
1190- Fixed a bug (#638) - ``db_set_charset()`` ignored its arguments and always used the configured charset instead.
Andrey Andreev4be5de12012-03-02 15:45:41 +02001191- Fixed a bug (#413) - Oracle's error handling methods used to only return connection-related errors.
Andrey Andreev26902142014-02-07 18:16:09 +02001192- Fixed a bug (#1101) - :doc:`Database Result <database/results>` method ``field_data()`` for 'mysql', 'mysqli' drivers was implemented as if it was handling a DESCRIBE result instead of the actual result set.
1193- Fixed a bug in Oracle's :doc:`Database Forge <database/forge>` method ``_create_table()`` where it failed with AUTO_INCREMENT as it's not supported.
1194- Fixed a bug (#1080) - when using the SMTP protocol, :doc:`Email Library <libraries/email>` method ``send()`` was returning TRUE even if the connection/authentication against the server failed.
1195- Fixed a bug (#306) - ODBC's ``insert_id()`` method was calling non-existent function ``odbc_insert_id()``, which resulted in a fatal error.
1196- Fixed a bug in Oracle's :doc:`Database Result <database/results>` implementation where the cursor ID passed to it was always NULL.
1197- Fixed a bug (#64) - Regular expression in *DB_query_builder.php* failed to handle queries containing SQL bracket delimiters in the JOIN condition.
1198- Fixed a bug in the :doc:`Session Library <libraries/sessions>` where a PHP E_NOTICE error was triggered by ``_unserialize()`` due to results from databases such as MSSQL and Oracle being space-padded on the right.
1199- Fixed a bug (#501) - :doc:`Form Validation Library <libraries/form_validation>` method ``set_rules()`` depended on ``count($_POST)`` instead of actually checking if the request method 'POST' before aborting.
1200- Fixed a bug (#136) - PostgreSQL and MySQL's ``escape_str()`` method didn't properly escape LIKE wild characters.
1201- Fixed a bug in :doc:`Loader Library <libraries/loader>` method ``library()`` where some PHP versions wouldn't execute the class constructor.
Andrey Andreev64bfa062012-03-29 18:54:09 +03001202- Fixed a bug (#88) - An unexisting property was used for configuration of the Memcache cache driver.
Andrey Andreev26902142014-02-07 18:16:09 +02001203- Fixed a bug (#14) - :doc:`Database Forge <database/forge>` method ``create_database()`` didn't utilize the configured database character set.
1204- Fixed a bug (#23, #1238) - :doc:`Database Caching <database/caching>` method ``delete_all()`` used to delete .htaccess and index.html files, which is a potential security risk.
1205- Fixed a bug in :doc:`Trackback Library <libraries/trackback>` method ``validate_url()`` where it didn't actually do anything, due to input not being passed by reference.
1206- Fixed a bug (#11, #183, #863) - :doc:`Form Validation Library <libraries/form_validation>` method ``_execute()`` silently continued to the next rule, if a rule method/function is not found.
Andrey Andreev08fec7b2013-07-19 16:25:51 +03001207- Fixed a bug (#122) - routed URI string was being reported incorrectly in sub-directories.
Andrey Andreev26902142014-02-07 18:16:09 +02001208- Fixed a bug (#1241) - :doc:`Zip Library <libraries/zip>` method ``read_dir()`` wasn't compatible with Windows.
1209- Fixed a bug (#306) - ODBC driver didn't have an ``_insert_batch()`` method, which resulted in fatal error being triggered when ``insert_batch()`` is used with it.
1210- Fixed a bug in MSSQL and SQLSrv's ``_truncate()`` where the TABLE keyword was missing.
1211- Fixed a bug in PDO's ``trans_commit()`` method where it failed due to an erroneous property name.
1212- Fixed a bug (#798) - :doc:`Query Builder <database/query_builder>` method ``update()`` used to ignore LIKE conditions that were set with ``like()``.
1213- Fixed a bug in Oracle's and MSSQL's ``delete()`` methods where an erroneous SQL statement was generated when used with ``limit()``.
1214- Fixed a bug in SQLSRV's ``delete()`` method where ``like()`` and ``limit()`` conditions were ignored.
Andrey Andreevb3f774b2012-04-23 12:57:57 +03001215- Fixed a bug (#1265) - Database connections were always closed, regardless of the 'pconnect' option value.
Andrey Andreev8d5b24a2012-01-27 14:37:38 +02001216- Fixed a bug (#128) - :doc:`Language Library <libraries/language>` did not correctly keep track of loaded language files.
Andrey Andreev26902142014-02-07 18:16:09 +02001217- Fixed a bug (#1349) - :doc:`File Uploading Library <libraries/file_uploading>` method ``get_extension()`` returned the original filename when it didn't have an actual extension.
1218- Fixed a bug (#1273) - :doc:`Query Builder <database/query_builder>` method ``set_update_batch()`` generated an E_NOTICE message.
1219- Fixed a bug (#44, #110) - :doc:`File Uploading Library <libraries/file_uploading>` method ``clean_file_name()`` didn't clear '!' and '#' characters.
1220- Fixed a bug (#121) - :doc:`Database Results <database/results>` method ``row()`` returned an array when there's no actual result to be returned.
1221- Fixed a bug (#319) - SQLSRV's ``affected_rows()`` method failed due to a scrollable cursor being created for write-type queries.
1222- Fixed a bug (#356) - :doc:`Database <database/index>` driver 'postgre' didn't have an ``_update_batch()`` method, which resulted in fatal error being triggered when ``update_batch()`` is used with it.
Andrey Andreevaf4d55d2012-06-07 16:22:35 +03001223- Fixed a bug (#784, #862) - :doc:`Database Forge <database/forge>` method ``create_table()`` failed on SQLSRV/MSSQL when used with 'IF NOT EXISTS'.
Andrey Andreev26902142014-02-07 18:16:09 +02001224- Fixed a bug (#1419) - :doc:`Driver Library <general/creating_drivers>` had a static variable that was causing an error.
1225- Fixed a bug (#1411) - the :doc:`Email Library <libraries/email>` used its own short list of MIMEs instead the one from *config/mimes.php*.
1226- Fixed a bug where php.ini setting *magic_quotes_runtime* wasn't turned off for PHP 5.3 (where it is indeed deprecated, but not non-existent).
1227- Fixed a bug (#666) - :doc:`Output Library <libraries/output>` method ``set_content_type()`` didn't set the document charset.
Andrey Andreevaf4d55d2012-06-07 16:22:35 +03001228- Fixed a bug (#784, #861) - :doc:`Database Forge <database/forge>` method ``create_table()`` used to accept constraints for MSSQL/SQLSRV integer-type columns.
Andrey Andreev26902142014-02-07 18:16:09 +02001229- Fixed a bug (#706) - SQLSRV/MSSSQL :doc:`Database <database/index>` drivers didn't escape field names.
1230- Fixed a bug (#1452) - :doc:`Query Builder <database/query_builder>` method ``protect_identifiers()`` didn't properly detect identifiers with spaces in their names.
1231- Fixed a bug where :doc:`Query Builder <database/query_builder>` method ``protect_identifiers()`` ignored its extra arguments when the value passed to it is an array.
1232- Fixed a bug where :doc:`Query Builder <database/query_builder>` internal method ``_has_operator()`` didn't detect BETWEEN.
1233- Fixed a bug where :doc:`Query Builder <database/query_builder>` method ``join()`` failed with identifiers containing dashes.
Andrey Andreev5d281762012-06-11 22:05:40 +03001234- Fixed a bug (#1264) - :doc:`Database Forge <database/forge>` and :doc:`Database Utilities <database/utilities>` didn't update/reset the databases and tables list cache when a table or a database is created, dropped or renamed.
Andrey Andreev26902142014-02-07 18:16:09 +02001235- Fixed a bug (#7) - :doc:`Query Builder <database/query_builder>` method ``join()`` only escaped one set of conditions.
1236- Fixed a bug (#1321) - ``CI_Exceptions`` couldn't find the *errors/* directory in some cases.
Andrey Andreevc2804a32014-02-09 17:30:06 +02001237- Fixed a bug (#1202) - :doc:`Encrypt Library <libraries/encrypt>` ``encode_from_legacy()`` didn't set back the encrypt mode on failure.
Andrey Andreev26902142014-02-07 18:16:09 +02001238- Fixed a bug (#145) - :doc:`Database Class <database/index>` method ``compile_binds()`` failed when the bind marker was present in a literal string within the query.
1239- Fixed a bug in :doc:`Query Builder <database/query_builder>` method ``protect_identifiers()`` where if passed along with the field names, operators got escaped as well.
1240- Fixed a bug (#10) - :doc:`URI Library <libraries/uri>` internal method ``_detect_uri()`` failed with paths containing a colon.
1241- Fixed a bug (#1387) - :doc:`Query Builder <database/query_builder>` method ``from()`` didn't escape table aliases.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +02001242- Fixed a bug (#520) - :doc:`Date Helper <helpers/date_helper>` function :php:func:``nice_date()`` failed when the optional second parameter is not passed.
Andrey Andreev26902142014-02-07 18:16:09 +02001243- Fixed a bug (#318) - :doc:`Profiling Library <general/profiling>` setting *query_toggle_count* was not settable as described in the manual.
Jonatas Miguel982a9f22012-10-24 18:34:40 +01001244- Fixed a bug (#938) - :doc:`Config Library <libraries/config>` method ``site_url()`` added a question mark to the URL string when query strings are enabled even if it already existed.
1245- Fixed a bug (#999) - :doc:`Config Library <libraries/config>` method ``site_url()`` always appended ``$config['url_suffix']`` to the end of the URL string, regardless of whether a query string exists in it.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +02001246- Fixed a bug where :doc:`URL Helper <helpers/url_helper>` function :php:func:`anchor_popup()` ignored the attributes argument if it is not an array.
Andrey Andreev6ac51442012-06-18 13:05:17 +03001247- Fixed a bug (#1328) - :doc:`Form Validation Library <libraries/form_validation>` didn't properly check the type of the form fields before processing them.
Andrey Andreev8d3099d2012-06-21 16:00:20 +03001248- Fixed a bug (#79) - :doc:`Form Validation Library <libraries/form_validation>` didn't properly validate array fields that use associative keys or have custom indexes.
Andrey Andreev1a24a9d2012-06-27 00:52:47 +03001249- Fixed a bug (#427) - :doc:`Form Validation Library <libraries/form_validation>` method ``strip_image_tags()`` was an alias to a non-existent method.
Andrey Andreevd5809992012-06-28 14:06:54 +03001250- Fixed a bug (#1545) - :doc:`Query Builder <database/query_builder>` method ``limit()`` wasn't executed properly under Oracle.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +02001251- Fixed a bug (#1551) - :doc:`Date Helper <helpers/date_helper>` function :php:func:`standard_date()` didn't properly format *W3C* and *ATOM* standard dates.
Andrey Andreev26902142014-02-07 18:16:09 +02001252- Fixed a bug where :doc:`Query Builder <database/query_builder>` method ``join()`` escaped literal values as if they were fields.
Andrey Andreevcbb654d2012-07-10 11:36:32 +03001253- Fixed a bug (#135) - PHP Error logging was impossible without the errors being displayed.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +02001254- Fixed a bug (#1613) - :doc:`Form Helper <helpers/form_helper>` functions :php:func:`form_multiselect()`, :php:func:`form_dropdown()` didn't properly handle empty array option groups.
Andrey Andreev685cdd72012-07-13 20:11:13 +03001255- Fixed a bug (#1605) - :doc:`Pagination Library <libraries/pagination>` produced incorrect *previous* and *next* link values.
Jonatas Miguel982a9f22012-10-24 18:34:40 +01001256- Fixed a bug in SQLSRV's ``affected_rows()`` method where an erroneous function name was used.
1257- Fixed a bug (#1000) - Change syntax of ``$view_file`` to ``$_ci_view_file`` to prevent being overwritten by application.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +02001258- Fixed a bug (#1757) - :doc:`Directory Helper <helpers/directory_helper>` function :php:func:`directory_map()` was skipping files and directories named '0'.
Jonatas Miguel982a9f22012-10-24 18:34:40 +01001259- Fixed a bug (#1789) - :doc:`Database Library <database/index>` method ``escape_str()`` escaped quote characters in LIKE conditions twice under MySQL.
1260- Fixed a bug (#395) - :doc:`Unit Testing Library <libraries/unit_testing>` method ``result()`` didn't properly check array result columns when called from ``report()``.
Andrey Andreev26902142014-02-07 18:16:09 +02001261- Fixed a bug (#1692) - :doc:`Database Class <database/index>` method ``display_error()`` didn't properly trace the possible error source on Windows systems.
1262- Fixed a bug (#1745) - :doc:`Database Class <database/index>` method ``is_write_type()`` didn't return TRUE for LOAD queries.
1263- Fixed a bug (#1765) - :doc:`Database Class <database/index>` didn't properly detect connection errors for the 'mysqli' driver.
Jonatas Miguel982a9f22012-10-24 18:34:40 +01001264- Fixed a bug (#1257) - :doc:`Query Builder <database/query_builder>` used to (unnecessarily) group FROM clause contents, which breaks certain queries and is invalid for some databases.
1265- Fixed a bug (#1709) - :doc:`Email <libraries/email>` headers were broken when using long email subjects and \r\n as CRLF.
Andrey Andreev26902142014-02-07 18:16:09 +02001266- Fixed a bug where ``MB_ENABLED`` constant was only declared if ``UTF8_ENABLED`` was set to TRUE.
Jonatas Miguel982a9f22012-10-24 18:34:40 +01001267- Fixed a bug where the :doc:`Session Library <libraries/sessions>` accepted cookies with *last_activity* values being in the future.
1268- Fixed a bug (#1897) - :doc:`Email Library <libraries/email>` triggered PHP E_WARNING errors when *mail* protocol used and ``to()`` is never called.
1269- Fixed a bug (#1409) - :doc:`Email Library <libraries/email>` didn't properly handle multibyte characters when applying Q-encoding to headers.
Andrey Andreev26902142014-02-07 18:16:09 +02001270- Fixed a bug where :doc:`Email Library <libraries/email>` ignored its *wordwrap* setting while handling alternative messages.
Jonatas Miguel982a9f22012-10-24 18:34:40 +01001271- Fixed a bug (#1476, #1909) - :doc:`Pagination Library <libraries/pagination>` didn't take into account actual routing when determining the current page.
1272- Fixed a bug (#1766) - :doc:`Query Builder <database/query_builder>` didn't always take into account the *dbprefix* setting.
1273- Fixed a bug (#779) - :doc:`URI Class <libraries/uri>` didn't always trim slashes from the *uri_string* as shown in the documentation.
1274- Fixed a bug (#134) - :doc:`Database Caching <database/caching>` method ``delete_cache()`` didn't work in some cases due to *cachedir* not being initialized properly.
Andrey Andreev9d0ab042012-10-24 21:47:39 +03001275- Fixed a bug (#191) - :doc:`Loader Library <libraries/loader>` ignored attempts for (re)loading databases to ``get_instance()->db`` even when the old database connection is dead.
Andrey Andreeva0836b92012-10-24 22:03:42 +03001276- Fixed a bug (#1255) - :doc:`User Agent Library <libraries/user_agent>` method ``is_referral()`` only checked if ``$_SERVER['HTTP_REFERER']`` exists.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +02001277- Fixed a bug (#1146) - :doc:`Download Helper <helpers/download_helper>` function :php:func:`force_download()` incorrectly sent *Cache-Control* directives *pre-check* and *post-check* to Internet Explorer.
Andrey Andreev4a7cc762012-10-24 23:52:05 +03001278- Fixed a bug (#1811) - :doc:`URI Library <libraries/uri>` didn't properly cache segments for ``uri_to_assoc()`` and ``ruri_to_assoc()``.
Andrey Andreev60b97142012-10-25 16:59:17 +03001279- Fixed a bug (#1506) - :doc:`Form Helpers <helpers/form_helper>` set empty *name* attributes.
Andrey Andreevb05f5062012-10-26 12:01:02 +03001280- Fixed a bug (#59) - :doc:`Query Builder <database/query_builder>` method ``count_all_results()`` ignored the DISTINCT clause.
Andrey Andreeva779b2c2012-10-26 16:25:47 +03001281- Fixed a bug (#1624) - :doc:`Form Validation Library <libraries/form_validation>` rule **matches** didn't property handle array field names.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +02001282- Fixed a bug (#1630) - :doc:`Form Helper <helpers/form_helper>` function :php:func:`set_value()` didn't escape HTML entities.
1283- Fixed a bug (#142) - :doc:`Form Helper <helpers/form_helper>` function :php:func:`form_dropdown()` didn't escape HTML entities in option values.
Andrey Andreevca20d842012-10-27 03:02:38 +03001284- Fixed a bug (#50) - :doc:`Session Library <libraries/sessions>` unnecessarily stripped slashed from serialized data, making it impossible to read objects in a namespace.
Andrey Andreeved174112012-10-30 13:42:01 +02001285- Fixed a bug (#658) - :doc:`Routing <general/routing>` wildcard **:any** didn't work as advertised and matched multiple URI segments instead of all characters within a single segment.
Andrey Andreev9dd2dbb2012-10-31 17:54:56 +02001286- Fixed a bug (#1938) - :doc:`Email Library <libraries/email>` removed multiple spaces inside a pre-formatted plain text message.
Andrey Andreev254735e2012-11-01 21:21:20 +02001287- Fixed a bug (#122) - :doc:`URI Library <libraries/uri>` method ``ruri_string()`` didn't include a directory if one is used.
Andrey Andreev28daade2012-11-03 02:13:48 +02001288- Fixed a bug - :doc:`Routing Library <general/routing>` didn't properly handle *default_controller* in a subdirectory when a method is also specified.
Andrey Andreev38e32f62012-11-03 00:16:47 +02001289- Fixed a bug (#953) - :doc:`post_controller_constructor hook <general/hooks>` wasn't called with a *404_override*.
Andrey Andreev55a8c622012-11-06 13:31:21 +02001290- Fixed a bug (#1220) - :doc:`Profiler Library <general/profiling>` didn't display information for database objects that are instantiated inside models.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +02001291- Fixed a bug (#1978) - :doc:`Directory Helper <helpers/directory_helper>` function :php:func:`directory_map()`'s return array didn't make a distinction between directories and file indexes when a directory with a numeric name is present.
Andrey Andreev12d7b462012-11-12 13:42:09 +02001292- Fixed a bug (#777) - :doc:`Loader Library <libraries/loader>` didn't look for helper extensions in added package paths.
Andrey Andreeva2b06772012-11-20 15:09:46 +02001293- Fixed a bug (#18) - :doc:`APC Cache <libraries/caching>` driver didn't (un)serialize data, resulting in failure to store objects.
Andrey Andreevce0c9562012-11-22 17:26:29 +02001294- Fixed a bug (#188) - :doc:`Unit Testing Library <libraries/unit_testing>` filled up logs with error messages for non-existing language keys.
Andrey Andreev2d48b4f2012-11-23 17:33:21 +02001295- Fixed a bug (#113) - :doc:`Form Validation Library <libraries/form_validation>` didn't properly handle empty fields that were specified as an array.
Andrey Andreevc1c99d52012-12-07 15:16:20 +02001296- Fixed a bug (#2061) - :doc:`Routing Class <general/routing>` didn't properly sanitize directory, controller and function triggers with **enable_query_strings** set to TRUE.
Andrey Andreev7545ffd2013-01-10 16:23:48 +02001297- Fixed a bug - SQLSRV didn't support ``escape_like_str()`` or escaping an array of values.
Andrey Andreev26902142014-02-07 18:16:09 +02001298- Fixed a bug - :doc:`Database Results <database/results>` method ``list_fields()`` didn't reset its field pointer for the 'mysql', 'mysqli' and 'mssql' drivers.
Andrey Andreev8151cbb2013-01-30 13:57:56 +02001299- Fixed a bug (#2211) - :doc:`Migration Library <libraries/migration>` extensions couldn't execute ``CI_Migration::__construct()``.
Andrey Andreev26902142014-02-07 18:16:09 +02001300- Fixed a bug (#2255) - :doc:`Email Library <libraries/email>` didn't apply *smtp_timeout* to socket reads and writes.
1301- Fixed a bug (#2239) - :doc:`Email Library <libraries/email>` improperly handled the Subject when used with *bcc_batch_mode* resulting in E_WARNING messages and an empty Subject.
Andrey Andreev3e014372013-02-21 15:59:34 +02001302- Fixed a bug (#2234) - :doc:`Query Builder <database/query_builder>` didn't reset JOIN cache for write-type queries.
Andrey Andreev0e4237f2013-04-04 16:53:21 +03001303- Fixed a bug (#2298) - :doc:`Database Results <database/results>` method ``next_row()`` kept returning the last row, allowing for infinite loops.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +02001304- Fixed a bug (#2236, #2639) - :doc:`Form Helper <helpers/form_helper>` functions :php:func:`set_value()`, :php:func:`set_select()`, :php:func:`set_radio()`, :php:func:`set_checkbox()` didn't parse array notation for keys if the rule was not present in the :doc:`Form Validation Library <libraries/form_validation>`.
Andrey Andreev3b0c08a2013-03-29 15:15:41 +02001305- Fixed a bug (#2353) - :doc:`Query Builder <database/query_builder>` erroneously prefixed literal strings with **dbprefix**.
Andrey Andreeve514c762013-04-01 10:36:44 +03001306- Fixed a bug (#78) - :doc:`Cart Library <libraries/cart>` didn't allow non-English letters in product names.
Andrey Andreev1ccaaae2013-04-04 13:59:50 +03001307- Fixed a bug (#77) - :doc:`Database Class <database/index>` didn't properly handle the transaction "test mode" flag.
Andrey Andreev0e4237f2013-04-04 16:53:21 +03001308- Fixed a bug (#2380) - :doc:`URI Routing <general/routing>` method ``fetch_method()`` returned 'index' if the requested method name matches its controller name.
Andrey Andreev206d9512013-04-19 04:25:53 +03001309- Fixed a bug (#2388) - :doc:`Email Library <libraries/email>` used to ignore attachment errors, resulting in broken emails being sent.
Andrey Andreevcd9797a2013-06-28 14:03:48 +03001310- Fixed a bug (#2498) - :doc:`Form Validation Library <libraries/form_validation>` rule **valid_base64** only checked characters instead of actual validity.
Andrey Andreev26902142014-02-07 18:16:09 +02001311- Fixed a bug (#2425) - OCI8 :doc:`database <database/index>` driver method ``stored_procedure()`` didn't log an error unless **db_debug** was set to TRUE.
Andrey Andreevd5ab75e2013-07-17 20:28:48 +03001312- Fixed a bug (#2490) - :doc:`Database Class <database/queries>` method ``query()`` returning boolean instead of a result object for PostgreSQL-specific *INSERT INTO ... RETURNING* statements.
Andrey Andreev6a3d7e52013-07-18 19:14:05 +03001313- Fixed a bug (#249) - :doc:`Cache Library <libraries/caching>` didn't properly handle Memcache(d) configurations with missing options.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +02001314- Fixed a bug (#180) - :php:func:`config_item()` didn't take into account run-time configuration changes.
vlakoffc941d852013-08-06 14:44:40 +02001315- Fixed a bug (#2551) - :doc:`Loader Library <libraries/loader>` method ``library()`` didn't properly check if a class that is being loaded already exists.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +02001316- Fixed a bug (#2560) - :doc:`Form Helper <helpers/form_helper>` function :php:func:`form_open()` set the 'method="post"' attribute only if the passed attributes equaled an empty string.
Andrey Andreev5b55c152013-08-06 14:14:32 +03001317- Fixed a bug (#2585) - :doc:`Query Builder <database/query_builder>` methods ``min()``, ``max()``, ``avg()``, ``sum()`` didn't escape field names.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +02001318- Fixed a bug (#2590) - :doc:`Common function <general/common_functions>` :php:func:`log_message()` didn't actually cache the ``CI_Log`` class instance.
1319- Fixed a bug (#2609) - :doc:`Common function <general/common_functions>` :php:func:`get_config()` optional argument was only effective on first function call. Also, it can now add items, in addition to updating existing items.
Andrey Andreeva9346aa2013-09-13 16:03:07 +03001320- Fixed a bug in the 'postgre' :doc:`database <database/index>` driver where the connection ID wasn't passed to ``pg_escape_string()``.
Andrey Andreevfd0aabb2013-09-23 13:18:20 +03001321- Fixed a bug (#33) - Script execution was terminated when an invalid cookie key was encountered.
Andrey Andreev26902142014-02-07 18:16:09 +02001322- Fixed a bug (#2691) - nested :doc:`database <database/index>` transactions could end in a deadlock when an error is encountered with *db_debug* set to TRUE.
Andrey Andreev0850a282013-10-21 14:26:18 +03001323- Fixed a bug (#2515) - ``_exception_handler()`` used to send the 200 "OK" HTTP status code and didn't stop script exection even on fatal errors.
kakyshaf06864c2013-10-29 02:52:44 +03001324- Fixed a bug - Redis :doc:`Caching <libraries/caching>` driver didn't handle connection failures properly.
Andrey Andreevf8f14f32013-12-10 11:32:32 +02001325- Fixed a bug (#2756) - :doc:`Database Class <database/index>` executed the MySQL-specific `SET SESSION sql_mode` query for all drivers when the 'stricton' option is set.
Connor Tumbleson528591d2014-01-09 10:04:43 -06001326- Fixed a bug (#2579) - :doc:`Query Builder <database/query_builder>` "no escape" functionality didn't work properly with query cache.
Andrey Andreeva9c7d182014-01-06 14:38:00 +02001327- Fixed a bug (#2237) - :doc:`Parser Library <libraries/parser>` failed if the same tag pair is used more than once within a template.
Andrey Andreev3b2803e2014-01-07 14:46:38 +02001328- Fixed a bug (#2143) - :doc:`Form Validation Library <libraries/form_validation>` didn't check for rule groups named in a *controller/method* manner when trying to load from a config file.
Andrey Andreevda8c7a52014-01-07 18:08:26 +02001329- Fixed a bug (#2762) - :doc:`Hooks Class <general/hooks>` didn't properly check if the called class/function exists.
Andrey Andreev26902142014-02-07 18:16:09 +02001330- Fixed a bug (#148) - :doc:`Input Library <libraries/input>` internal method ``_clean_input_data()`` assumed that it data is URL-encoded, stripping certain character sequences from it.
Andrey Andreev80a16b12014-01-08 17:19:03 +02001331- Fixed a bug (#346) - with ``$config['global_xss_filtering']`` turned on, the ``$_GET``, ``$_POST``, ``$_COOKIE`` and ``$_SERVER`` superglobals were overwritten during initialization time, resulting in XSS filtering being either performed twice or there was no possible way to get the original data, even though options for this do exist.
Andrey Andreev26902142014-02-07 18:16:09 +02001332- Fixed an edge case (#555) - :doc:`User Agent Library <libraries/user_agent>` reported an incorrect version Opera 10+ due to a non-standard user-agent string.
Andrey Andreevcd3d9db2015-02-02 13:41:01 +02001333- Fixed a bug (#133) - :doc:`Text Helper <helpers/text_helper>` :php:func:`ascii_to_entities()` stripped the last character if it happens to be in the extended ASCII group.
Andrey Andreevd8b1ad32014-01-15 17:42:52 +02001334- Fixed a bug (#2822) - ``fwrite()`` was used incorrectly throughout the whole framework, allowing incomplete writes when writing to a network stream and possibly a few other edge cases.
Andrey Andreeva9938a02014-01-17 14:55:56 +02001335- Fixed a bug where :doc:`User Agent Library <libraries/user_agent>` methods ``accept_charset()`` and ``accept_lang()`` didn't properly parse HTTP headers that contain spaces.
Andrey Andreev30d53242014-01-16 14:41:46 +02001336- Fixed a bug where *default_controller* was called instad of triggering a 404 error if the current route is in a controller directory.
Andrey Andreev3aecedb2014-01-20 10:39:08 +02001337- Fixed a bug (#2737) - :doc:`XML-RPC Library <libraries/xmlrpc>` used objects as array keys, which triggered E_NOTICE messages.
Andrey Andreev26902142014-02-07 18:16:09 +02001338- Fixed a bug (#2771) - :doc:`Security Library <libraries/security>` method ``xss_clean()`` didn't take into account HTML5 entities.
Andrey Andreevf6779f52014-02-05 23:15:26 +02001339- Fixed a bug (#2856) - ODBC method ``affected_rows()`` passed an incorrect value to ``odbc_num_rows()``.
Andrey Andreeve52fc262014-02-11 13:27:01 +02001340- Fixed a bug (#43) :doc:`Image Manipulation Library <libraries/image_lib>` method ``text_watermark()`` didn't properly determine watermark placement.
Andrey Andreev05983fc2014-02-11 16:51:43 +02001341- Fixed a bug where :doc:`HTML Table Library <libraries/table>` ignored its *auto_heading* setting if headings were not already set.
Andrey Andreevb1616b82014-02-13 15:12:43 +02001342- Fixed a bug (#2364) - :doc:`Pagination Library <libraries/pagination>` appended the query string (if used) multiple times when there are successive calls to ``create_links()`` with no ``initialize()`` in between them.
Andrey Andreevbb3edf12014-02-20 17:51:41 +02001343- Partially fixed a bug (#261) - UTF-8 class method ``clean_string()`` generating log messages and/or not producing the desired result due to an upstream bug in iconv.
Andrey Andreev20e802e2014-02-24 12:16:48 +02001344- Fixed a bug where ``CI_Xmlrpcs::parseRequest()`` could fail if ``$HTTP_RAW_POST_DATA`` is not populated.
Ahmad Anbar6db1ea62014-03-14 22:35:21 +02001345- Fixed a bug in :doc:`Zip Library <libraries/zip>` internal method ``_get_mod_time()`` where it was not parsing result returned by ``filemtime()``.
vlakoffa7812042014-10-24 11:27:31 +02001346- Fixed a bug (#3161) - :doc:`Cache Library <libraries/caching>` methods `increment()`, `decrement()` didn't auto-create non-existent items when using redis and/or file storage.
Andrey Andreevb27338a2014-08-27 12:16:52 +03001347- Fixed a bug (#3189) - :doc:`Parser Library <libraries/parser>` used double replacement on ``key->value`` pairs, exposing a potential template injection vulnerability.
Andrey Andreev396eb892015-02-06 14:50:10 +02001348- Fixed a bug (#3573) - :doc:`Email Library <libraries/email>` violated `RFC5321 <https://tools.ietf.org/rfc/rfc5321.txt>`_ by sending 'localhost.localdomain' as a hostname.
Andrey Andreev42c01bd2015-02-21 19:44:05 +02001349- Fixed a bug (#3572) - ``CI_Security::_remove_evil_attributes()`` failed for large-sized inputs due to *pcre.backtrack_limit* and didn't properly match HTML tags.
Jonatas Miguel982a9f22012-10-24 18:34:40 +01001350
Andrey Andreeve4e8f5d2015-07-20 15:28:26 +03001351Version 2.2.3
1352=============
1353
1354Release Date: July 14, 2015
1355
1356- Security
1357
1358 - Removed a fallback to ``mysql_escape_string()`` in the 'mysql' database driver (``escape_str()`` method) when there's no active database connection.
1359
1360Version 2.2.2
1361=============
1362
1363Release Date: April 15, 2015
1364
1365- General Changes
1366
1367 - Added HTTP "Host" header character validation to prevent cache poisoning attacks when *base_url* auto-detection is used.
1368 - Added *FSCommand* and *seekSegmentTime* to the "evil attributes" list in ``CI_Security::xss_clean()``.
1369
1370Bug fixes for 2.2.2
1371-------------------
1372
1373- Fixed a bug (#3665) - ``CI_Security::entity_decode()`` triggered warnings under some circumstances.
1374
Andrey Andreev58bed5a2015-01-23 12:06:01 +02001375Version 2.2.1
1376=============
1377
1378Release Date: January 22, 2015
1379
1380- General Changes
1381
1382 - Improved security in ``xss_clean()``.
1383 - Updated timezones in :doc:`Date Helper <helpers/date_helper>`.
1384
1385Bug fixes for 2.2.1
1386-------------------
1387
1388- Fixed a bug (#3094) - Internal method ``CI_Input::_clean_input_data()`` breaks encrypted session cookies.
1389- Fixed a bug (#2268) - :doc:`Security Library <libraries/security>` method ``xss_clean()`` didn't properly match JavaScript events.
1390- Fixed a bug (#3309) - :doc:`Security Library <libraries/security>` method ``xss_clean()`` used an overly-invasive pattern to strip JS event handlers.
1391- Fixed a bug (#2771) - :doc:`Security Library <libraries/security>` method ``xss_clean()`` didn't take into account HTML5 entities.
1392- Fixed a bug (#73) - :doc:`Security Library <libraries/security>` method ``sanitize_filename()`` could be tricked by an XSS attack.
1393- Fixed a bug (#2681) - :doc:`Security Library <libraries/security>` method ``entity_decode()`` used the ``PREG_REPLACE_EVAL`` flag, which is deprecated since PHP 5.5.
1394- Fixed a bug (#3302) - Internal function ``get_config()`` triggered an E_NOTICE message on PHP 5.6.
1395- Fixed a bug (#2508) - :doc:`Config Library <libraries/config>` didn't properly detect if the current request is via HTTPS.
1396- Fixed a bug (#3314) - SQLSRV :doc:`Database driver <database/index>`'s method ``count_all()`` didn't escape the supplied table name.
1397- Fixed a bug (#3404) - MySQLi :doc:`Database driver <database/index>`'s method ``escape_str()`` had a wrong fallback to ``mysql_escape_string()`` when there was no active connection.
1398- Fixed a bug in the :doc:`Session Library <libraries/sessions>` where session ID regeneration occurred during AJAX requests.
1399
Andrey Andreev632bb4a2014-05-31 20:38:25 +03001400Version 2.2.0
1401=============
1402
1403Release Date: June 2, 2014
1404
1405- General Changes
1406
1407 - Security: :doc:`Encrypt Library <libraries/encrypt>` method ``xor_encode()`` has been removed. The Encrypt Class now requires the Mcrypt extension to be installed.
Andrey Andreevf411e9c2014-05-31 21:02:23 +03001408 - Security: The :doc:`Session Library <libraries/sessions>` now uses HMAC authentication instead of a simple MD5 checksum.
Andrey Andreev632bb4a2014-05-31 20:38:25 +03001409
1410Bug fixes for 2.2.0
1411-------------------
1412
1413- Fixed an edge case (#2583) in the :doc:`Email Library <libraries/email>` where `Suhosin <http://www.hardened-php.net/suhosin/>` blocked messages sent via ``mail()`` due to trailing newspaces in headers.
1414- Fixed a bug (#696) - make ``oci_execute()`` calls inside ``num_rows()`` non-committing, since they are only there to reset which row is next in line for oci_fetch calls and thus don't need to be committed.
1415- Fixed a bug (#2689) - :doc:`Database Force <database/forge>` methods ``create_table()``, ``drop_table()`` and ``rename_table()`` produced broken SQL for tge 'sqlsrv' driver.
1416- Fixed a bug (#2427) - PDO :doc:`Database driver <database/index>` didn't properly check for query failures.
Andrey Andreevf411e9c2014-05-31 21:02:23 +03001417- Fixed a bug in the :doc:`Session Library <libraries/sessions>` where authentication was not performed for encrypted cookies.
Andrey Andreev632bb4a2014-05-31 20:38:25 +03001418
Eric Robertsfe520d52013-07-11 20:59:16 -05001419Version 2.1.4
1420=============
1421
1422Release Date: July 8, 2013
1423
1424- General Changes
1425
1426 - Improved security in ``xss_clean()``.
1427
1428Bug fixes for 2.1.4
1429-------------------
1430
1431- Fixed a bug (#1936) - :doc:`Migration Library <libraries/migration>` method ``latest()`` had a typo when retrieving language values.
1432- Fixed a bug (#2021) - :doc:`Migration Library <libraries/migration>` configuration file was mistakenly using Windows style line feeds.
Eric Roberts94e5c362013-07-16 16:22:17 -05001433- Fixed a bug (#1273) - ``E_NOTICE`` being generated by :doc:`Query Builder <database/query_builder>`'s ``set_update_batch()`` method.
1434- Fixed a bug (#2337) - :doc:`Email Library <libraries/email>` method ``print_debugger()`` didn't apply ``htmlspecialchars()`` to headers.
Eric Robertsfe520d52013-07-11 20:59:16 -05001435
Jonatas Miguel982a9f22012-10-24 18:34:40 +01001436Version 2.1.3
1437=============
1438
1439Release Date: October 8, 2012
1440
1441- Core
Eric Robertsfe520d52013-07-11 20:59:16 -05001442
Jonatas Miguel982a9f22012-10-24 18:34:40 +01001443 - :doc:`Common function <general/common_functions>` ``is_loaded()`` now returns a reference.
1444
1445Bug fixes for 2.1.3
1446-------------------
1447
1448- Fixed a bug (#1543) - File-based :doc:`Caching <libraries/caching>` method ``get_metadata()`` used a non-existent array key to look for the TTL value.
1449- Fixed a bug (#1314) - :doc:`Session Library <libraries/sessions>` method ``sess_destroy()`` didn't destroy the userdata array.
Andrey Andreev759d3222012-10-30 11:30:47 +02001450- Fixed a bug (#804) - :doc:`Profiler library <general/profiling>` was trying to handle objects as strings in some cases, resulting in *E_WARNING* messages being issued by ``htmlspecialchars()``.
Jonatas Miguel982a9f22012-10-24 18:34:40 +01001451- Fixed a bug (#1699) - :doc:`Migration Library <libraries/migration>` ignored the ``$config['migration_path']`` setting.
1452- Fixed a bug (#227) - :doc:`Input Library <libraries/input>` allowed unconditional spoofing of HTTP clients' IP addresses through the *HTTP_CLIENT_IP* header.
1453- Fixed a bug (#907) - :doc:`Input Library <libraries/input>` ignored *HTTP_X_CLUSTER_CLIENT_IP* and *HTTP_X_CLIENT_IP* headers when checking for proxies.
1454- Fixed a bug (#940) - ``csrf_verify()`` used to set the CSRF cookie while processing a POST request with no actual POST data, which resulted in validating a request that should be considered invalid.
Amir Sabouryd5eb7322014-09-24 10:54:54 -04001455- Fixed a bug (#499) - :doc:`Security Library <libraries/security>` where a CSRF cookie was created even if ``$config['csrf_protection']`` is set to FALSE.
Jonatas Miguel982a9f22012-10-24 18:34:40 +01001456- Fixed a bug (#1715) - :doc:`Input Library <libraries/input>` triggered ``csrf_verify()`` on CLI requests.
Andrey Andreeveae17d12012-11-17 23:55:18 +02001457- Fixed a bug (#751) - :doc:`Query Builder <database/query_builder>` didn't properly handle cached field escaping overrides.
1458- Fixed a bug (#2004) - :doc:`Query Builder <database/query_builder>` didn't properly merge cached calls with non-cache ones.
Phil Sturgeonf748ebc2011-11-13 19:24:16 +00001459
Andrey Andreevec902162012-07-02 15:57:34 +03001460Version 2.1.2
1461=============
1462
1463Release Date: June 29, 2012
1464
1465- General Changes
Eric Roberts94e5c362013-07-16 16:22:17 -05001466
Andrey Andreevec902162012-07-02 15:57:34 +03001467 - Improved security in ``xss_clean()``.
Phil Sturgeonf748ebc2011-11-13 19:24:16 +00001468
Phil Sturgeon6b414d12012-02-29 11:59:35 +00001469Version 2.1.1
Phil Sturgeonf748ebc2011-11-13 19:24:16 +00001470=============
1471
Andrey Andreevec902162012-07-02 15:57:34 +03001472Release Date: June 12, 2012
Phil Sturgeonf748ebc2011-11-13 19:24:16 +00001473
1474- General Changes
Eric Roberts94e5c362013-07-16 16:22:17 -05001475
Phil Sturgeon6b414d12012-02-29 11:59:35 +00001476 - Fixed support for docx, xlsx files in mimes.php.
1477
1478- Libraries
Eric Roberts94e5c362013-07-16 16:22:17 -05001479
Phil Sturgeon6b414d12012-02-29 11:59:35 +00001480 - Further improved MIME type detection in the :doc:`File Uploading Library <libraries/file_uploading>`.
Andrey Andreev5a257182012-06-10 06:18:14 +03001481 - Added support for IPv6 to the :doc:`Input Library <libraries/input>`.
1482 - Added support for the IP format parameter to the :doc:`Form Validation Library <libraries/form_validation>`.
Phil Sturgeon6b414d12012-02-29 11:59:35 +00001483
Phil Sturgeona2bd3632012-03-04 15:32:58 +00001484- Helpers
Eric Roberts94e5c362013-07-16 16:22:17 -05001485
Andrey Andreevec902162012-07-02 15:57:34 +03001486 - ``url_title()`` performance and output improved. You can now use any string as the word delimiter, but 'dash' and 'underscore' are still supported.
Phil Sturgeon6b414d12012-02-29 11:59:35 +00001487
1488Bug fixes for 2.1.1
1489-------------------
1490
Andrey Andreevec902162012-07-02 15:57:34 +03001491- Fixed a bug (#697) - A wrong array key was used in the :doc:`File Uploading Library <libraries/file_uploading>` to check for mime-types.
1492- Fixed a bug - ``form_open()`` compared $action against ``site_url()`` instead of ``base_url()``.
1493- Fixed a bug - ``CI_Upload::_file_mime_type()`` could've failed if ``mime_content_type()`` is used for the detection and returns FALSE.
Phil Sturgeon6b414d12012-02-29 11:59:35 +00001494- Fixed a bug (#538) - Windows paths were ignored when using the :doc:`Image Manipulation Library <libraries/image_lib>` to create a new file.
Andrey Andreev67a08ed2012-05-19 13:35:40 +03001495- Fixed a bug - When database caching was enabled, $this->db->query() checked the cache before binding variables which resulted in cached queries never being found.
1496- Fixed a bug - CSRF cookie value was allowed to be any (non-empty) string before being written to the output, making code injection a risk.
vlakoffc941d852013-08-06 14:44:40 +02001497- Fixed a bug (#726) - PDO put a 'dbname' argument in its connection string regardless of the database platform in use, which made it impossible to use SQLite.
Andrey Andreevec902162012-07-02 15:57:34 +03001498- Fixed a bug - ``CI_DB_pdo_driver::num_rows()`` was not returning properly value with SELECT queries, cause it was relying on ``PDOStatement::rowCount()``.
1499- Fixed a bug (#1059) - ``CI_Image_lib::clear()`` was not correctly clearing all necessary object properties, namely width and height.
Phil Sturgeon6b414d12012-02-29 11:59:35 +00001500
Phil Sturgeon6b414d12012-02-29 11:59:35 +00001501Version 2.1.0
1502=============
1503
1504Release Date: November 14, 2011
1505
1506- General Changes
Phil Sturgeonf748ebc2011-11-13 19:24:16 +00001507
Derek Jones8ede1a22011-10-05 13:34:52 -05001508 - Callback validation rules can now accept parameters like any other
1509 validation rule.
Derek Jones8ede1a22011-10-05 13:34:52 -05001510 - Added html_escape() to :doc:`Common
1511 functions <general/common_functions>` to escape HTML output
1512 for preventing XSS.
Derek Jones8ede1a22011-10-05 13:34:52 -05001513
1514- Helpers
1515
1516 - Added increment_string() to :doc:`String
1517 Helper <helpers/string_helper>` to turn "foo" into "foo-1"
1518 or "foo-1" into "foo-2".
1519 - Altered form helper - made action on form_open_multipart helper
1520 function call optional. Fixes (#65)
1521 - url_title() will now trim extra dashes from beginning and end.
Timothy Warren74479272011-10-10 10:51:55 -04001522 - Improved speed of :doc:`String Helper <helpers/string_helper>`'s random_string() method
Derek Jones8ede1a22011-10-05 13:34:52 -05001523
1524- Database
1525
Timothy Warren01b56bc2011-10-10 10:45:45 -04001526 - Added a `CUBRID <http://www.cubrid.org/>`_ driver to the :doc:`Database
Derek Jones8ede1a22011-10-05 13:34:52 -05001527 Driver <database/index>`. Thanks to the CUBRID team for
1528 supplying this patch.
Timothy Warren01b56bc2011-10-10 10:45:45 -04001529 - Added a PDO driver to the :doc:`Database Driver <database/index>`.
Derek Jones8ede1a22011-10-05 13:34:52 -05001530 - Typecast limit and offset in the :doc:`Database
1531 Driver <database/queries>` to integers to avoid possible
1532 injection.
1533 - Added additional option 'none' for the optional third argument for
1534 $this->db->like() in the :doc:`Database
Derek Jonesce79be02012-06-25 23:23:46 -07001535 Driver <database/query_builder>`.
Timothy Warren01b56bc2011-10-10 10:45:45 -04001536 - Added $this->db->insert_batch() support to the OCI8 (Oracle) driver.
Felix Balfoort85fe96d2011-11-29 16:27:53 +01001537 - Added failover if the main connections in the config should fail
Derek Jones8ede1a22011-10-05 13:34:52 -05001538
1539- Libraries
1540
Eric Roberts94e5c362013-07-16 16:22:17 -05001541 - Changed ``$this->cart->insert()`` in the :doc:`Cart
Derek Jones8ede1a22011-10-05 13:34:52 -05001542 Library <libraries/cart>` to return the Row ID if a single
1543 item was inserted successfully.
1544 - Added support to set an optional parameter in your callback rules
1545 of validation using the :doc:`Form Validation
1546 Library <libraries/form_validation>`.
Phil Sturgeonf748ebc2011-11-13 19:24:16 +00001547 - Added a :doc:`Migration library <libraries/migration>` to assist with applying
kenjis68647362011-10-18 23:33:23 +09001548 incremental updates to your database schema.
Derek Jones8ede1a22011-10-05 13:34:52 -05001549 - Driver children can be located in any package path.
1550 - Added max_filename_increment config setting for Upload library.
Eric Roberts94e5c362013-07-16 16:22:17 -05001551 - Added ``is_unique`` to the :doc:`Form Validation library <libraries/form_validation>`.
Timothy Warren01b56bc2011-10-10 10:45:45 -04001552 - Added $config['use_page_numbers'] to the :doc:`Pagination library <libraries/pagination>`, which enables real page numbers in the URI.
Derek Jones8ede1a22011-10-05 13:34:52 -05001553 - Added TLS and SSL Encryption for SMTP.
1554
1555- Core
1556
1557 - Changed private functions in CI_URI to protected so MY_URI can
1558 override them.
1559 - Removed CI_CORE boolean constant from CodeIgniter.php (no longer Reactor and Core versions).
1560
1561Bug fixes for 2.1.0
1562-------------------
1563
Derek Jones8ede1a22011-10-05 13:34:52 -05001564- Fixed #378 Robots identified as regular browsers by the User Agent
1565 class.
1566- If a config class was loaded first then a library with the same name
1567 is loaded, the config would be ignored.
1568- Fixed a bug (Reactor #19) where 1) the 404_override route was being
1569 ignored in some cases, and 2) auto-loaded libraries were not
1570 available to the 404_override controller when a controller existed
1571 but the requested method did not.
1572- Fixed a bug (Reactor #89) where MySQL export would fail if the table
1573 had hyphens or other non alphanumeric/underscore characters.
Phil Sturgeonf748ebc2011-11-13 19:24:16 +00001574- Fixed a bug (#105) that stopped query errors from being logged unless database debugging was enabled
Derek Jones8ede1a22011-10-05 13:34:52 -05001575- Fixed a bug (#160) - Removed unneeded array copy in the file cache
1576 driver.
1577- Fixed a bug (#150) - field_data() now correctly returns column
1578 length.
1579- Fixed a bug (#8) - load_class() now looks for core classes in
1580 APPPATH first, allowing them to be replaced.
Phil Sturgeonf748ebc2011-11-13 19:24:16 +00001581- Fixed a bug (#24) - ODBC database driver called incorrect parent in __construct().
1582- Fixed a bug (#85) - OCI8 (Oracle) database escape_str() function did not escape correct.
kenjis087a7a82011-10-20 20:08:47 +09001583- Fixed a bug (#344) - Using schema found in :doc:`Saving Session Data to a Database <libraries/sessions>`, system would throw error "user_data does not have a default value" when deleting then creating a session.
Derek Jones8ede1a22011-10-05 13:34:52 -05001584- Fixed a bug (#112) - OCI8 (Oracle) driver didn't pass the configured database character set when connecting.
1585- Fixed a bug (#182) - OCI8 (Oracle) driver used to re-execute the statement whenever num_rows() is called.
kenjis087a7a82011-10-20 20:08:47 +09001586- Fixed a bug (#82) - WHERE clause field names in the DB update_string() method were not escaped, resulting in failed queries in some cases.
1587- Fixed a bug (#89) - Fix a variable type mismatch in DB display_error() where an array is expected, but a string could be set instead.
Derek Jones8ede1a22011-10-05 13:34:52 -05001588- Fixed a bug (#467) - Suppress warnings generated from get_magic_quotes_gpc() (deprecated in PHP 5.4)
1589- Fixed a bug (#484) - First time _csrf_set_hash() is called, hash is never set to the cookie (in Security.php).
kenjis087a7a82011-10-20 20:08:47 +09001590- Fixed a bug (#60) - Added _file_mime_type() method to the :doc:`File Uploading Library <libraries/file_uploading>` in order to fix a possible MIME-type injection.
Bo-Yi Wud75e03a2011-10-07 14:44:35 +08001591- Fixed a bug (#537) - Support for all wav type in browser.
Bo-Yi Wu4d7c27e2011-10-15 12:02:32 +08001592- Fixed a bug (#576) - Using ini_get() function to detect if apc is enabled or not.
Phil Sturgeonc737c942011-11-21 11:23:15 +00001593- Fixed invalid date time format in :doc:`Date helper <helpers/date_helper>` and :doc:`XMLRPC library <libraries/xmlrpc>`.
vlakoff0c23a272013-09-20 22:09:20 +02001594- Fixed a bug (#200) - MySQL queries would be malformed after calling db->count_all() then db->get().
Derek Jones8ede1a22011-10-05 13:34:52 -05001595
1596Version 2.0.3
1597=============
1598
1599Release Date: August 20, 2011
1600
1601- Security
1602
1603 - An improvement was made to the MySQL and MySQLi drivers to prevent
1604 exposing a potential vector for SQL injection on sites using
1605 multi-byte character sets in the database client connection.
1606 An incompatibility in PHP versions < 5.2.3 and MySQL < 5.0.7 with
1607 *mysql_set_charset()* creates a situation where using multi-byte
1608 character sets on these environments may potentially expose a SQL
1609 injection attack vector. Latin-1, UTF-8, and other "low ASCII"
1610 character sets are unaffected on all environments.
1611
1612 If you are running or considering running a multi-byte character
1613 set for your database connection, please pay close attention to
1614 the server environment you are deploying on to ensure you are not
1615 vulnerable.
1616
1617- General Changes
1618
1619 - Fixed a bug where there was a misspelling within a code comment in
1620 the index.php file.
1621 - Added Session Class userdata to the output profiler. Additionally,
1622 added a show/hide toggle on HTTP Headers, Session Data and Config
1623 Variables.
1624 - Removed internal usage of the EXT constant.
1625 - Visual updates to the welcome_message view file and default error
1626 templates. Thanks to `danijelb <https://bitbucket.org/danijelb>`_
1627 for the pull request.
1628 - Added insert_batch() function to the PostgreSQL database driver.
1629 Thanks to epallerols for the patch.
1630 - Added "application/x-csv" to mimes.php.
Timothy Warren01b56bc2011-10-10 10:45:45 -04001631 - Fixed a bug where :doc:`Email library <libraries/email>`
Derek Jones8ede1a22011-10-05 13:34:52 -05001632 attachments with a "." in the name would using invalid MIME-types.
Derek Jones8ede1a22011-10-05 13:34:52 -05001633
1634- Helpers
1635
1636 - Added an optional third parameter to heading() which allows adding
1637 html attributes to the rendered heading tag.
1638 - form_open() now only adds a hidden (Cross-site Reference Forgery)
1639 protection field when the form's action is internal and is set to
1640 the post method. (Reactor #165)
1641 - Re-worked plural() and singular() functions in the :doc:`Inflector
1642 helper <helpers/inflector_helper>` to support considerably
1643 more words.
1644
1645- Libraries
1646
1647 - Altered Session to use a longer match against the user_agent
1648 string. See upgrade notes if using database sessions.
1649 - Added $this->db->set_dbprefix() to the :doc:`Database
1650 Driver <database/queries>`.
1651 - Changed $this->cart->insert() in the :doc:`Cart
1652 Library <libraries/cart>` to return the Row ID if a single
1653 item was inserted successfully.
1654 - Added $this->load->get_var() to the :doc:`Loader
1655 library <libraries/loader>` to retrieve global vars set with
1656 $this->load->view() and $this->load->vars().
1657 - Changed $this->db->having() to insert quotes using escape() rather
1658 than escape_str().
1659
1660Bug fixes for 2.0.3
1661-------------------
1662
1663- Added ENVIRONMENT to reserved constants. (Reactor #196)
1664- Changed server check to ensure SCRIPT_NAME is defined. (Reactor #57)
1665- Removed APPPATH.'third_party' from the packages autoloader to negate
1666 needless file stats if no packages exist or if the developer does not
1667 load any other packages by default.
1668- Fixed a bug (Reactor #231) where Sessions Library database table
1669 example SQL did not contain an index on last_activity. See :doc:`Upgrade
1670 Notes <installation/upgrade_203>`.
1671- Fixed a bug (Reactor #229) where the Sessions Library example SQL in
1672 the documentation contained incorrect SQL.
1673- Fixed a bug (Core #340) where when passing in the second parameter to
1674 $this->db->select(), column names in subsequent queries would not be
1675 properly escaped.
1676- Fixed issue #199 - Attributes passed as string does not include a
1677 space between it and the opening tag.
1678- Fixed a bug where the method $this->cart->total_items() from :doc:`Cart
1679 Library <libraries/cart>` now returns the sum of the quantity
1680 of all items in the cart instead of your total count.
1681- Fixed a bug where not setting 'null' when adding fields in db_forge
1682 for mysql and mysqli drivers would default to NULL instead of NOT
1683 NULL as the docs suggest.
1684- Fixed a bug where using $this->db->select_max(),
1685 $this->db->select_min(), etc could throw notices. Thanks to w43l for
1686 the patch.
1687- Replace checks for STDIN with php_sapi_name() == 'cli' which on the
1688 whole is more reliable. This should get parameters in crontab
1689 working.
1690
1691Version 2.0.2
1692=============
1693
1694Release Date: April 7, 2011
1695Hg Tag: v2.0.2
1696
1697- General changes
1698
1699 - The :doc:`Security library <./libraries/security>` was moved to
1700 the core and is now loaded automatically. Please remove your
1701 loading calls.
1702 - The CI_SHA class is now deprecated. All supported versions of PHP
1703 provide a sha1() function.
1704 - constants.php will now be loaded from the environment folder if
1705 available.
1706 - Added language key error logging
1707 - Made Environment Support optional. Comment out or delete the
1708 constant to stop environment checks.
1709 - Added Environment Support for Hooks.
1710 - Added CI\_ Prefix to the :doc:`Cache driver <libraries/caching>`.
1711 - Added :doc:`CLI usage <./general/cli>` documentation.
1712
1713- Helpers
1714
1715 - Removed the previously deprecated dohash() from the :doc:`Security
1716 helper <./helpers/security_helper>`; use do_hash() instead.
1717 - Changed the 'plural' function so that it doesn't ruin the
1718 captalization of your string. It also take into consideration
1719 acronyms which are all caps.
1720
1721- Database
1722
1723 - $this->db->count_all_results() will now return an integer
1724 instead of a string.
1725
1726Bug fixes for 2.0.2
1727-------------------
1728
1729- Fixed a bug (Reactor #145) where the Output Library had
1730 parse_exec_vars set to protected.
1731- Fixed a bug (Reactor #80) where is_really_writable would create an
1732 empty file when on Windows or with safe_mode enabled.
1733- Fixed various bugs with User Guide.
1734- Added is_cli_request() method to documentation for :doc:`Input
1735 class <libraries/input>`.
1736- Added form_validation_lang entries for decimal, less_than and
1737 greater_than.
Master Yodabd2a7e42015-03-25 02:36:31 -07001738- Fixed issue #153 Escape Str Bug in MSSQL driver.
1739- Fixed issue #172 Google Chrome 11 posts incorrectly when action is empty.
Derek Jones8ede1a22011-10-05 13:34:52 -05001740
1741Version 2.0.1
1742=============
1743
1744Release Date: March 15, 2011
1745Hg Tag: v2.0.1
1746
1747- General changes
1748
1749 - Added $config['cookie_secure'] to the config file to allow
1750 requiring a secure (HTTPS) in order to set cookies.
1751 - Added the constant CI_CORE to help differentiate between Core:
1752 TRUE and Reactor: FALSE.
1753 - Added an ENVIRONMENT constant in index.php, which affects PHP
1754 error reporting settings, and optionally, which configuration
kenjis087a7a82011-10-20 20:08:47 +09001755 files are loaded (see below). Read more on the :doc:`Handling
Derek Jones8ede1a22011-10-05 13:34:52 -05001756 Environments <general/environments>` page.
1757 - Added support for
1758 :ref:`environment-specific <config-environments>`
1759 configuration files.
1760
1761- Libraries
1762
kenjis087a7a82011-10-20 20:08:47 +09001763 - Added decimal, less_than and greater_than rules to the :doc:`Form
Derek Jones8ede1a22011-10-05 13:34:52 -05001764 validation Class <libraries/form_validation>`.
1765 - :doc:`Input Class <libraries/input>` methods post() and get()
1766 will now return a full array if the first argument is not
1767 provided.
1768 - Secure cookies can now be made with the set_cookie() helper and
1769 :doc:`Input Class <libraries/input>` method.
1770 - Added set_content_type() to :doc:`Output
1771 Class <libraries/output>` to set the output Content-Type
1772 HTTP header based on a MIME Type or a config/mimes.php array key.
1773 - :doc:`Output Class <libraries/output>` will now support method
1774 chaining.
1775
1776- Helpers
1777
1778 - Changed the logic for form_open() in :doc:`Form
1779 helper <helpers/form_helper>`. If no value is passed it will
1780 submit to the current URL.
1781
1782Bug fixes for 2.0.1
1783-------------------
1784
1785- CLI requests can now be run from any folder, not just when CD'ed next
1786 to index.php.
1787- Fixed issue #41: Added audio/mp3 mime type to mp3.
1788- Fixed a bug (Core #329) where the file caching driver referenced the
1789 incorrect cache directory.
1790- Fixed a bug (Reactor #69) where the SHA1 library was named
1791 incorrectly.
1792
Derek Jonescaa1db62011-10-17 21:17:21 -05001793.. _2.0.0-changelog:
1794
Derek Jones8ede1a22011-10-05 13:34:52 -05001795Version 2.0.0
1796=============
1797
1798Release Date: January 28, 2011
1799Hg Tag: v2.0.0
1800
1801- General changes
1802
1803 - PHP 4 support is removed. CodeIgniter now requires PHP 5.1.6.
1804 - Scaffolding, having been deprecated for a number of versions, has
1805 been removed.
1806 - Plugins have been removed, in favor of Helpers. The CAPTCHA plugin
1807 has been converted to a Helper and
1808 :doc:`documented <./helpers/captcha_helper>`. The JavaScript
1809 calendar plugin was removed due to the ready availability of great
1810 JavaScript calendars, particularly with jQuery.
1811 - Added new special Library type:
1812 :doc:`Drivers <./general/drivers>`.
1813 - Added full query-string support. See the config file for details.
1814 - Moved the application folder outside of the system folder.
1815 - Moved system/cache and system/logs directories to the application
1816 directory.
1817 - Added routing overrides to the main index.php file, enabling the
1818 normal routing to be overridden on a per "index" file basis.
1819 - Added the ability to set config values (or override config values)
1820 directly from data set in the main index.php file. This allows a
1821 single application to be used with multiple front controllers,
1822 each having its own config values.
1823 - Added $config['directory_trigger'] to the config file so that a
1824 controller sub-directory can be specified when running _GET
1825 strings instead of URI segments.
1826 - Added ability to set "Package" paths - specific paths where the
1827 Loader and Config classes should try to look first for a requested
1828 file. This allows distribution of sub-applications with their own
1829 libraries, models, config files, etc. in a single "package"
1830 directory. See the :doc:`Loader class <libraries/loader>`
1831 documentation for more details.
Master Yodabd2a7e42015-03-25 02:36:31 -07001832 - In-development code is now hosted at BitBucket .
Derek Jones8ede1a22011-10-05 13:34:52 -05001833 - Removed the deprecated Validation Class.
1834 - Added CI\_ Prefix to all core classes.
1835 - Package paths can now be set in application/config/autoload.php.
kenjis087a7a82011-10-20 20:08:47 +09001836 - :doc:`Upload library <libraries/file_uploading>` file_name can
Derek Jones8ede1a22011-10-05 13:34:52 -05001837 now be set without an extension, the extension will be taken from
1838 the uploaded file instead of the given name.
1839 - In :doc:`Database Forge <database/forge>` the name can be omitted
1840 from $this->dbforge->modify_column()'s 2nd param if you aren't
1841 changing the name.
1842 - $config['base_url'] is now empty by default and will guess what
1843 it should be.
1844 - Enabled full Command Line Interface compatibility with
1845 config['uri_protocol'] = 'CLI';.
1846
1847- Libraries
1848
1849 - Added a :doc:`Cache driver <libraries/caching>` with APC,
1850 memcached, and file-based support.
1851 - Added $prefix, $suffix and $first_url properties to :doc:`Pagination
1852 library <./libraries/pagination>`.
1853 - Added the ability to suppress first, previous, next, last, and
1854 page links by setting their values to FALSE in the :doc:`Pagination
1855 library <./libraries/pagination>`.
1856 - Added :doc:`Security library <./libraries/security>`, which now
1857 contains the xss_clean function, filename_security function and
1858 other security related functions.
1859 - Added CSRF (Cross-site Reference Forgery) protection to the
1860 :doc:`Security library <./libraries/security>`.
1861 - Added $parse_exec_vars property to Output library.
1862 - Added ability to enable / disable individual sections of the
1863 :doc:`Profiler <general/profiling>`
1864 - Added a wildcard option $config['allowed_types'] = '\*' to the
1865 :doc:`File Uploading Class <./libraries/file_uploading>`.
1866 - Added an 'object' config variable to the XML-RPC Server library so
1867 that one can specify the object to look for requested methods,
1868 instead of assuming it is in the $CI superobject.
1869 - Added "is_object" into the list of unit tests capable of being
1870 run.
1871 - Table library will generate an empty cell with a blank string, or
1872 NULL value.
1873 - Added ability to set tag attributes for individual cells in the
1874 Table library
1875 - Added a parse_string() method to the :doc:`Parser
1876 Class <libraries/parser>`.
1877 - Added HTTP headers and Config information to the
1878 :doc:`Profiler <general/profiling>` output.
1879 - Added Chrome and Flock to the list of detectable browsers by
1880 browser() in the :doc:`User Agent Class <libraries/user_agent>`.
1881 - The :doc:`Unit Test Class <libraries/unit_testing>` now has an
1882 optional "notes" field available to it, and allows for discrete
1883 display of test result items using
1884 $this->unit->set_test_items().
1885 - Added a $xss_clean class variable to the XMLRPC library, enabling
1886 control over the use of the Security library's xss_clean()
1887 method.
1888 - Added a download() method to the :doc:`FTP
1889 library <libraries/ftp>`
1890 - Changed do_xss_clean() to return FALSE if the uploaded file
1891 fails XSS checks.
1892 - Added stripslashes() and trim()ing of double quotes from $_FILES
1893 type value to standardize input in Upload library.
1894 - Added a second parameter (boolean) to
1895 $this->zip->read_dir('/path/to/directory', FALSE) to remove the
1896 preceding trail of empty folders when creating a Zip archive. This
1897 example would contain a zip with "directory" and all of its
1898 contents.
1899 - Added ability in the Image Library to handle PNG transparency for
1900 resize operations when using the GD lib.
1901 - Modified the Session class to prevent use if no encryption key is
1902 set in the config file.
1903 - Added a new config item to the Session class
1904 sess_expire_on_close to allow sessions to auto-expire when the
1905 browser window is closed.
1906 - Improved performance of the Encryption library on servers where
1907 Mcrypt is available.
1908 - Changed the default encryption mode in the Encryption library to
1909 CBC.
1910 - Added an encode_from_legacy() method to provide a way to
1911 transition encrypted data from CodeIgniter 1.x to CodeIgniter 2.x.
1912 Please see the :doc:`upgrade
1913 instructions <./installation/upgrade_200>` for details.
1914 - Altered Form_Validation library to allow for method chaining on
1915 set_rules(), set_message() and set_error_delimiters()
1916 functions.
1917 - Altered Email Library to allow for method chaining.
1918 - Added request_headers(), get_request_header() and
1919 is_ajax_request() to the input class.
1920 - Altered :doc:`User agent library <libraries/user_agent>` so that
1921 is_browser(), is_mobile() and is_robot() can optionally check
1922 for a specific browser or mobile device.
1923 - Altered :doc:`Input library <libraries/input>` so that post() and
1924 get() will return all POST and GET items (respectively) if there
1925 are no parameters passed in.
1926
1927- Database
1928
1929 - :doc:`database configuration <./database/configuration>`.
1930 - Added autoinit value to :doc:`database
1931 configuration <./database/configuration>`.
1932 - Added stricton value to :doc:`database
1933 configuration <./database/configuration>`.
1934 - Added database_exists() to the :doc:`Database Utilities
1935 Class <database/utilities>`.
1936 - Semantic change to db->version() function to allow a list of
1937 exceptions for databases with functions to return version string
1938 instead of specially formed SQL queries. Currently this list only
1939 includes Oracle and SQLite.
1940 - Fixed a bug where driver specific table identifier protection
1941 could lead to malformed queries in the field_data() functions.
1942 - Fixed a bug where an undefined class variable was referenced in
1943 database drivers.
1944 - Modified the database errors to show the filename and line number
1945 of the problematic query.
1946 - Removed the following deprecated functions: orwhere, orlike,
1947 groupby, orhaving, orderby, getwhere.
1948 - Removed deprecated _drop_database() and _create_database()
1949 functions from the db utility drivers.
1950 - Improved dbforge create_table() function for the Postgres driver.
1951
1952- Helpers
1953
1954 - Added convert_accented_characters() function to :doc:`text
1955 helper <./helpers/text_helper>`.
1956 - Added accept-charset to the list of inserted attributes of
1957 form_open() in the :doc:`Form Helper <helpers/form_helper>`.
1958 - Deprecated the dohash() function in favour of do_hash() for
1959 naming consistency.
1960 - Non-backwards compatible change made to get_dir_file_info() in
1961 the :doc:`File Helper <helpers/file_helper>`. No longer recurses
1962 by default so as to encourage responsible use (this function can
1963 cause server performance issues when used without caution).
1964 - Modified the second parameter of directory_map() in the
1965 :doc:`Directory Helper <helpers/directory_helper>` to accept an
1966 integer to specify recursion depth.
1967 - Modified delete_files() in the :doc:`File
1968 Helper <helpers/file_helper>` to return FALSE on failure.
1969 - Added an optional second parameter to byte_format() in the
1970 :doc:`Number Helper <helpers/number_helper>` to allow for decimal
1971 precision.
1972 - Added alpha, and sha1 string types to random_string() in the
1973 :doc:`String Helper <helpers/string_helper>`.
Andrey Andreev84760562018-02-12 15:15:47 +02001974 - Modified prep_url() so as to not prepend \http:// if the supplied
Derek Jones8ede1a22011-10-05 13:34:52 -05001975 string already has a scheme.
1976 - Modified get_file_info in the file helper, changing filectime()
1977 to filemtime() for dates.
1978 - Modified smiley_js() to add optional third parameter to return
1979 only the javascript with no script tags.
1980 - The img() function of the :doc:`HTML
1981 helper <./helpers/html_helper>` will now generate an empty
1982 string as an alt attribute if one is not provided.
1983 - If CSRF is enabled in the application config file, form_open()
1984 will automatically insert it as a hidden field.
1985 - Added sanitize_filename() into the :doc:`Security
1986 helper <./helpers/security_helper>`.
1987 - Added ellipsize() to the :doc:`Text
1988 Helper <./helpers/text_helper>`
1989 - Added elements() to the :doc:`Array
1990 Helper <./helpers/array_helper>`
1991
1992- Other Changes
1993
1994 - Added an optional second parameter to show_404() to disable
1995 logging.
1996 - Updated loader to automatically apply the sub-class prefix as an
1997 option when loading classes. Class names can be prefixed with the
1998 standard "CI\_" or the same prefix as the subclass prefix, or no
1999 prefix at all.
2000 - Increased randomness with is_really_writable() to avoid file
2001 collisions when hundreds or thousands of requests occur at once.
2002 - Switched some DIR_WRITE_MODE constant uses to FILE_WRITE_MODE
2003 where files and not directories are being operated on.
2004 - get_mime_by_extension() is now case insensitive.
2005 - Added "default" to the list :doc:`Reserved
2006 Names <general/reserved_names>`.
2007 - Added 'application/x-msdownload' for .exe files and
kenjis087a7a82011-10-20 20:08:47 +09002008 'application/x-gzip-compressed' for .tgz files to
Derek Jones8ede1a22011-10-05 13:34:52 -05002009 config/mimes.php.
2010 - Updated the output library to no longer compress output or send
2011 content-length headers if the server runs with
2012 zlib.output_compression enabled.
2013 - Eliminated a call to is_really_writable() on each request unless
2014 it is really needed (Output caching)
2015 - Documented append_output() in the :doc:`Output
2016 Class <libraries/output>`.
2017 - Documented a second argument in the decode() function for the
Andrey Andreevc2804a32014-02-09 17:30:06 +02002018 :doc:`Encrypt Class <libraries/encrypt>`.
Derek Jones8ede1a22011-10-05 13:34:52 -05002019 - Documented db->close().
2020 - Updated the router to support a default route with any number of
2021 segments.
2022 - Moved _remove_invisible_characters() function from the
2023 :doc:`Security Library <libraries/security>` to :doc:`common
2024 functions. <general/common_functions>`
2025 - Added audio/mpeg3 as a valid mime type for MP3.
2026
2027Bug fixes for 2.0.0
2028-------------------
2029
2030- Fixed a bug where you could not change the User-Agent when sending
2031 email.
2032- Fixed a bug where the Output class would send incorrect cached output
2033 for controllers implementing their own _output() method.
2034- Fixed a bug where a failed query would not have a saved query
2035 execution time causing errors in the Profiler
2036- Fixed a bug that was writing log entries when multiple identical
2037 helpers and plugins were loaded.
2038- Fixed assorted user guide typos or examples (#10693, #8951, #7825,
2039 #8660, #7883, #6771, #10656).
2040- Fixed a language key in the profiler: "profiler_no_memory_usage"
2041 to "profiler_no_memory".
2042- Fixed an error in the Zip library that didn't allow downloading on
2043 PHP 4 servers.
2044- Fixed a bug in the Form Validation library where fields passed as
2045 rule parameters were not being translated (#9132)
2046- Modified inflector helper to properly pluralize words that end in
2047 'ch' or 'sh'
2048- Fixed a bug in xss_clean() that was not allowing hyphens in query
2049 strings of submitted URLs.
2050- Fixed bugs in get_dir_file_info() and get_file_info() in the
2051 File Helper with recursion, and file paths on Windows.
2052- Fixed a bug where Active Record override parameter would not let you
2053 disable Active Record if it was enabled in your database config file.
2054- Fixed a bug in reduce_double_slashes() in the String Helper to
2055 properly remove duplicate leading slashes (#7585)
2056- Fixed a bug in values_parsing() of the XML-RPC library which
2057 prevented NULL variables typed as 'string' from being handled
2058 properly.
2059- Fixed a bug were form_open_multipart() didn't accept string
2060 attribute arguments (#10930).
2061- Fixed a bug (#10470) where get_mime_by_extension() was case
2062 sensitive.
2063- Fixed a bug where some error messages for the SQLite and Oracle
2064 drivers would not display.
2065- Fixed a bug where files created with the Zip Library would result in
2066 file creation dates of 1980.
2067- Fixed a bug in the Session library that would result in PHP error
2068 when attempting to store values with objects.
2069- Fixed a bug where extending the Controller class would result in a
2070 fatal PHP error.
2071- Fixed a PHP Strict Standards Error in the index.php file.
2072- Fixed a bug where getimagesize() was being needlessly checked on
2073 non-image files in is_allowed_type().
2074- Fixed a bug in the Encryption library where an empty key was not
2075 triggering an error.
2076- Fixed a bug in the Email library where CC and BCC recipients were not
2077 reset when using the clear() method (#109).
2078- Fixed a bug in the URL Helper where prep_url() could cause a PHP
2079 error on PHP versions < 5.1.2.
2080- Added a log message in core/output if the cache directory config
2081 value was not found.
2082- Fixed a bug where multiple libraries could not be loaded by passing
2083 an array to load->library()
2084- Fixed a bug in the html helper where too much white space was
2085 rendered between the src and alt tags in the img() function.
2086- Fixed a bug in the profilers _compile_queries() function.
2087- Fixed a bug in the date helper where the DATE_ISO8601 variable was
2088 returning an incorrectly formatted date string.
2089
2090Version 1.7.2
2091=============
2092
2093Release Date: September 11, 2009
2094Hg Tag: v1.7.2
2095
2096- Libraries
2097
2098 - Added a new :doc:`Cart Class <libraries/cart>`.
2099 - Added the ability to pass $config['file_name'] for the :doc:`File
2100 Uploading Class <libraries/file_uploading>` and rename the
2101 uploaded file.
2102 - Changed order of listed user-agents so Safari would more
2103 accurately report itself. (#6844)
2104
2105- Database
2106
2107 - Switched from using gettype() in escape() to is\_* methods, since
2108 future PHP versions might change its output.
2109 - Updated all database drivers to handle arrays in escape_str()
2110 - Added escape_like_str() method for escaping strings to be used
2111 in LIKE conditions
2112 - Updated Active Record to utilize the new LIKE escaping mechanism.
2113 - Added reconnect() method to DB drivers to try to keep alive /
2114 reestablish a connection after a long idle.
2115 - Modified MSSQL driver to use mssql_get_last_message() for error
2116 messages.
2117
2118- Helpers
2119
2120 - Added form_multiselect() to the :doc:`Form
2121 helper <helpers/form_helper>`.
2122 - Modified form_hidden() in the :doc:`Form
2123 helper <helpers/form_helper>` to accept multi-dimensional
2124 arrays.
2125 - Modified form_prep() in the :doc:`Form
2126 helper <helpers/form_helper>` to keep track of prepped
2127 fields to avoid multiple prep/mutation from subsequent calls which
2128 can occur when using Form Validation and form helper functions to
2129 output form fields.
2130 - Modified directory_map() in the :doc:`Directory
2131 helper <helpers/directory_helper>` to allow the inclusion of
2132 hidden files, and to return FALSE on failure to read directory.
2133 - Modified the :doc:`Smiley helper <helpers/smiley_helper>` to work
2134 with multiple fields and insert the smiley at the last known
2135 cursor position.
2136
2137- General
2138
kenjis087a7a82011-10-20 20:08:47 +09002139 - Compatible with PHP 5.3.0.
Derek Jones8ede1a22011-10-05 13:34:52 -05002140 - Modified :doc:`show_error() <general/errors>` to allow sending
2141 of HTTP server response codes.
2142 - Modified :doc:`show_404() <general/errors>` to send 404 status
2143 code, removing non-CGI compatible header() statement from
2144 error_404.php template.
2145 - Added set_status_header() to the :doc:`Common
2146 functions <general/common_functions>` to allow use when the
2147 Output class is unavailable.
2148 - Added is_php() to :doc:`Common
2149 functions <general/common_functions>` to facilitate PHP
2150 version comparisons.
2151 - Added 2 CodeIgniter "cheatsheets" (thanks to DesignFellow.com for
2152 this contribution).
2153
2154Bug fixes for 1.7.2
2155-------------------
2156
2157- Fixed assorted user guide typos or examples (#6743, #7214, #7516,
2158 #7287, #7852, #8224, #8324, #8349).
2159- Fixed a bug in the Form Validation library where multiple callbacks
2160 weren't working (#6110)
2161- doctype helper default value was missing a "1".
2162- Fixed a bug in the language class when outputting an error for an
2163 unfound file.
2164- Fixed a bug in the Calendar library where the shortname was output
2165 for "May".
2166- Fixed a bug with ORIG_PATH_INFO that was allowing URIs of just a
2167 slash through.
2168- Fixed a fatal error in the Oracle and ODBC drivers (#6752)
2169- Fixed a bug where xml_from_result() was checking for a nonexistent
2170 method.
2171- Fixed a bug where Database Forge's add_column and modify_column
2172 were not looping through when sent multiple fields.
2173- Fixed a bug where the File Helper was using '/' instead of the
2174 DIRECTORY_SEPARATOR constant.
2175- Fixed a bug to prevent PHP errors when attempting to use sendmail on
2176 servers that have manually disabled the PHP popen() function.
2177- Fixed a bug that would cause PHP errors in XML-RPC data if the PHP
2178 data type did not match the specified XML-RPC type.
2179- Fixed a bug in the XML-RPC class with parsing dateTime.iso8601 data
2180 types.
2181- Fixed a case sensitive string replacement in xss_clean()
2182- Fixed a bug in form_textarea() where form data was not prepped
2183 correctly.
2184- Fixed a bug in form_prep() causing it to not preserve entities in
2185 the user's original input when called back into a form element
2186- Fixed a bug in _protect_identifiers() where the swap prefix
2187 ($swap_pre) was not being observed.
2188- Fixed a bug where the 400 status header sent with the 'disallowed URI
2189 characters' was not compatible with CGI environments.
2190- Fixed a bug in the typography class where heading tags could have
2191 paragraph tags inserted when using auto_typography().
2192
2193Version 1.7.1
2194=============
2195
2196Release Date: February 10, 2009
2197Hg Tag: 1.7.1
2198
2199- Libraries
2200
2201 - Fixed an arbitrary script execution security flaw (#6068) in the
2202 Form Validation library (thanks to hkk)
2203 - Changed default current page indicator in the Pagination library
2204 to use <strong> instead of <b>
2205 - A "HTTP/1.1 400 Bad Request" header is now sent when disallowed
2206 characters are encountered.
2207 - Added <big>, <small>, <q>, and <tt> to the Typography parser's
2208 inline elements.
2209 - Added more accurate error reporting for the Email library when
2210 using sendmail.
2211 - Removed a strict type check from the rotate() function of the
2212 :doc:`Image Manipulation Class <libraries/image_lib>`.
2213 - Added enhanced error checking in file saving in the Image library
2214 when using the GD lib.
2215 - Added an additional newline between multipart email headers and
2216 the MIME message text for better compatibility with a variety of
2217 MUAs.
2218 - Made modest improvements to efficiency and accuracy of
2219 explode_name() in the Image lib.
2220
2221- Database
2222
2223 - Added where_in to the list of expected arguments received by
2224 delete().
2225
2226- Helpers
2227
2228 - Added the ability to have optgroups in form_dropdown() within the
2229 :doc:`form helper <helpers/form_helper>`.
2230 - Added a doctype() function to the :doc:`HTML
2231 helper <helpers/html_helper>`.
2232 - Added ability to force lowercase for url_title() in the :doc:`URL
2233 helper <helpers/url_helper>`.
2234 - Changed the default "type" of form_button() to "button" from
2235 "submit" in the :doc:`form helper <helpers/form_helper>`.
2236 - Changed redirect() in the URL helper to allow redirections to URLs
2237 outside of the CI site.
2238 - Updated get_cookie() to try to fetch the cookie using the global
2239 cookie prefix if the requested cookie name doesn't exist.
2240
2241- Other Changes
2242
2243 - Improved security in xss_clean() to help prevent attacks
2244 targeting Internet Explorer.
2245 - Added 'application/msexcel' to config/mimes.php for .xls files.
2246 - Added 'proxy_ips' config item to whitelist reverse proxy servers
2247 from which to trust the HTTP_X_FORWARDED_FOR header to to
2248 determine the visitor's IP address.
2249 - Improved accuracy of Upload::is_allowed_filetype() for images
2250 (#6715)
2251
2252Bug fixes for 1.7.1
2253-------------------
2254
2255- Database
2256
2257 - Fixed a bug when doing 'random' on order_by() (#5706).
2258 - Fixed a bug where adding a primary key through Forge could fail
2259 (#5731).
2260 - Fixed a bug when using DB cache on multiple databases (#5737).
2261 - Fixed a bug where TRUNCATE was not considered a "write" query
2262 (#6619).
2263 - Fixed a bug where csv_from_result() was checking for a
2264 nonexistent method.
2265 - Fixed a bug _protect_identifiers() where it was improperly
2266 removing all pipe symbols from items
2267
2268- Fixed assorted user guide typos or examples (#5998, #6093, #6259,
2269 #6339, #6432, #6521).
2270- Fixed a bug in the MySQLi driver when no port is specified
2271- Fixed a bug (#5702), in which the field label was not being fetched
2272 properly, when "matching" one field to another.
2273- Fixed a bug in which identifers were not being escaped properly when
2274 reserved characters were used.
2275- Fixed a bug with the regular expression used to protect submitted
2276 paragraph tags in auto typography.
2277- Fixed a bug where double dashes within tag attributes were being
2278 converted to em dash entities.
2279- Fixed a bug where double spaces within tag attributes were being
2280 converted to non-breaking space entities.
2281- Fixed some accuracy issues with curly quotes in
2282 Typography::format_characters()
2283- Changed a few docblock comments to reflect actual return values.
2284- Fixed a bug with high ascii characters in subject and from email
2285 headers.
2286- Fixed a bug in xss_clean() where whitespace following a validated
2287 character entity would not be preserved.
2288- Fixed a bug where HTML comments and <pre> tags were being parsed in
2289 Typography::auto_typography().
2290- Fixed a bug with non-breaking space cleanup in
2291 Typography::auto_typography().
2292- Fixed a bug in database escaping where a compound statement (ie:
2293 SUM()) wasn't handled correctly with database prefixes.
2294- Fixed a bug when an opening quote is preceded by a paragraph tag and
2295 immediately followed by another tag.
2296- Fixed a bug in the Text Helper affecting some locales where
2297 word_censor() would not work on words beginning or ending with an
2298 accented character.
2299- Fixed a bug in the Text Helper character limiter where the provided
2300 limit intersects the last word of the string.
2301- Fixed a bug (#6342) with plural() in the Inflection helper with words
2302 ending in "y".
2303- Fixed bug (#6517) where Routed URI segments returned by
2304 URI::rsegment() method were incorrect for the default controller.
2305- Fixed a bug (#6706) in the Security Helper where xss_clean() was
2306 using a deprecated second argument.
2307- Fixed a bug in the URL helper url_title() function where trailing
2308 periods were allowed at the end of a URL.
2309- Fixed a bug (#6669) in the Email class when CRLF's are used for the
2310 newline character with headers when used with the "mail" protocol.
2311- Fixed a bug (#6500) where URI::A_filter_uri() was exit()ing an
2312 error instead of using show_error().
2313- Fixed a bug (#6592) in the File Helper where get_dir_file_info()
2314 where recursion was not occurring properly.
2315- Tweaked Typography::auto_typography() for some edge-cases.
2316
2317Version 1.7
2318===========
2319
2320Release Date: October 23, 2008
2321Hg Tag: 1.7.0
2322
2323- Libraries
2324
2325 - Added a new :doc:`Form Validation
2326 Class <libraries/form_validation>`. It simplifies setting
2327 rules and field names, supports arrays as field names, allows
2328 groups of validation rules to be saved in a config file, and adds
2329 some helper functions for use in view files. **Please note that
2330 the old Validation class is now deprecated**. We will leave it in
2331 the library folder for some time so that existing applications
2332 that use it will not break, but you are encouraged to migrate to
2333 the new version.
2334 - Updated the :doc:`Sessions class <libraries/sessions>` so that
2335 any custom data being saved gets stored to a database rather than
2336 the session cookie (assuming you are using a database to store
2337 session data), permitting much more data to be saved.
2338 - Added the ability to store libraries in subdirectories within
2339 either the main "libraries" or the local application "libraries"
2340 folder. Please see the :doc:`Loader class <libraries/loader>` for
2341 more info.
2342 - Added the ability to assign library objects to your own variable
2343 names when you use $this->load->library(). Please see the :doc:`Loader
2344 class <libraries/loader>` for more info.
2345 - Added controller class/method info to :doc:`Profiler
2346 class <general/profiling>` and support for multiple database
2347 connections.
2348 - Improved the "auto typography" feature and moved it out of the
2349 helper into its own :doc:`Typography
2350 Class <libraries/typography>`.
2351 - Improved performance and accuracy of xss_clean(), including
2352 reduction of false positives on image/file tests.
2353 - Improved :doc:`Parser class <./libraries/parser>` to allow
2354 multiple calls to the parse() function. The output of each is
2355 appended in the output.
2356 - Added max_filename option to set a file name length limit in the
2357 :doc:`File Upload Class <libraries/file_uploading>`.
2358 - Added set_status_header() function to :doc:`Output
2359 class <libraries/output>`.
2360 - Modified :doc:`Pagination <libraries/pagination>` class to only
2361 output the "First" link when the link for page one would not be
2362 shown.
2363 - Added support for mb_strlen in the :doc:`Form
2364 Validation <libraries/form_validation>` class so that
2365 multi-byte languages will calculate string lengths properly.
2366
2367- Database
2368
2369 - Improved Active Record class to allow full path column and table
2370 names: hostname.database.table.column. Also improved the alias
2371 handling.
2372 - Improved how table and column names are escaped and prefixed. It
2373 now honors full path names when adding prefixes and escaping.
2374 - Added Active Record caching feature to "update" and "delete"
2375 functions.
2376 - Added removal of non-printing control characters in escape_str()
2377 of DB drivers that do not have native PHP escaping mechanisms
2378 (mssql, oci8, odbc), to avoid potential SQL errors, and possible
2379 sources of SQL injection.
2380 - Added port support to MySQL, MySQLi, and MS SQL database drivers.
2381 - Added driver name variable in each DB driver, based on bug report
2382 #4436.
2383
2384- Helpers
2385
2386 - Added several new "setting" functions to the :doc:`Form
2387 helper <helpers/form_helper>` that allow POST data to be
2388 retrieved and set into forms. These are intended to be used on
2389 their own, or with the new :doc:`Form Validation
2390 Class <libraries/form_validation>`.
2391 - Added current_url() and uri_segments() to :doc:`URL
2392 helper <helpers/url_helper>`.
2393 - Altered auto_link() in the :doc:`URL
2394 helper <helpers/url_helper>` so that email addresses with
2395 "+" included will be linked.
2396 - Added meta() function to :doc:`HTML
2397 helper <helpers/html_helper>`.
2398 - Improved accuracy of calculations in :doc:`Number
2399 helper <helpers/number_helper>`.
2400 - Removed added newlines ("\\n") from most form and html helper
2401 functions.
2402 - Tightened up validation in the :doc:`Date
2403 helper <helpers/date_helper>` function human_to_unix(),
2404 and eliminated the POSIX regex.
2405 - Updated :doc:`Date helper <helpers/date_helper>` to match the
2406 world's current time zones and offsets.
2407 - Modified url_title() in the :doc:`URL
2408 helper <helpers/url_helper>` to remove characters and digits
2409 that are part of character entities, to allow dashes, underscores,
2410 and periods regardless of the $separator, and to allow uppercase
2411 characters.
2412 - Added support for arbitrary attributes in anchor_popup() of the
2413 :doc:`URL helper <helpers/url_helper>`.
2414
2415- Other Changes
2416
2417 - Added :doc:`PHP Style Guide <./general/styleguide>` to docs.
2418 - Added sanitization in xss_clean() for a deprecated HTML tag that
2419 could be abused in user input in Internet Explorer.
2420 - Added a few openxml document mime types, and an additional mobile
2421 agent to mimes.php and user_agents.php respectively.
2422 - Added a file lock check during caching, before trying to write to
2423 the file.
2424 - Modified Cookie key cleaning to unset a few troublesome key names
2425 that can be present in certain environments, preventing CI from
2426 halting execution.
2427 - Changed the output of the profiler to use style attribute rather
2428 than clear, and added the id "codeigniter_profiler" to the
2429 container div.
2430
2431Bug fixes for 1.7.0
2432-------------------
2433
2434- Fixed bug in xss_clean() that could remove some desirable tag
2435 attributes.
2436- Fixed assorted user guide typos or examples (#4807, #4812, #4840,
2437 #4862, #4864, #4899, #4930, #5006, #5071, #5158, #5229, #5254,
2438 #5351).
2439- Fixed an edit from 1.6.3 that made the $robots array in
2440 user_agents.php go poof.
2441- Fixed a bug in the :doc:`Email library <libraries/email>` with
2442 quoted-printable encoding improperly encoding space and tab
2443 characters.
2444- Modified XSS sanitization to no longer add semicolons after &[single
2445 letter], such as in M&M's, B&B, etc.
2446- Modified XSS sanitization to no longer strip XHTML image tags of
2447 closing slashes.
2448- Fixed a bug in the Session class when database sessions are used
2449 where upon session update all userdata would be errantly written to
2450 the session cookie.
2451- Fixed a bug (#4536) in backups with the MySQL driver where some
2452 legacy code was causing certain characters to be double escaped.
2453- Fixed a routing bug (#4661) that occurred when the default route
2454 pointed to a subfolder.
2455- Fixed the spelling of "Dhaka" in the timezone_menu() function of the
2456 :doc:`Date helper. <helpers/date_helper>`
2457- Fixed the spelling of "raspberry" in config/smileys.php.
2458- Fixed incorrect parenthesis in form_open() function (#5135).
2459- Fixed a bug that was ignoring case when comparing controller methods
2460 (#4560).
2461- Fixed a bug (#4615) that was not setting SMTP authorization settings
2462 when using the initialize function.
2463- Fixed a bug in highlight_code() in the :doc:`Text
2464 helper <helpers/text_helper>` that would leave a stray </span>
2465 in certain cases.
2466- Fixed Oracle bug (#3306) that was preventing multiple queries in one
2467 action.
2468- Fixed ODBC bug that was ignoring connection params due to its use of
2469 a constructor.
2470- Fixed a DB driver bug with num_rows() that would cause an error with
2471 the Oracle driver.
2472- Fixed MS SQL bug (#4915). Added brackets around database name in MS
2473 SQL driver when selecting the database, in the event that reserved
2474 characters are used in the name.
2475- Fixed a DB caching bug (4718) in which the path was incorrect when no
2476 URI segments were present.
2477- Fixed Image_lib class bug #4562. A path was not defined for NetPBM.
2478- Fixed Image_lib class bug #4532. When cropping an image with
2479 identical height/width settings on output, a copy is made.
2480- Fixed DB_driver bug (4900), in which a database error was not being
2481 logged correctly.
2482- Fixed DB backup bug in which field names were not being escaped.
2483- Fixed a DB Active Record caching bug in which multiple calls to
2484 cached data were not being honored.
2485- Fixed a bug in the Session class that was disallowing slashes in the
2486 serialized array.
2487- Fixed a Form Validation bug in which the "isset" error message was
2488 being trigged by the "required" rule.
2489- Fixed a spelling error in a Loader error message.
2490- Fixed a bug (5050) with IP validation with empty segments.
2491- Fixed a bug in which the parser was being greedy if multiple
2492 identical sets of tags were encountered.
2493
2494Version 1.6.3
2495=============
2496
2497Release Date: June 26, 2008
2498Hg Tag: v1.6.3
2499
2500Version 1.6.3 is a security and maintenance release and is recommended
2501for all users.
2502
2503- Database
2504
2505 - Modified MySQL/MySQLi Forge class to give explicit names to keys
2506 - Added ability to set multiple column non-primary keys to the
2507 :doc:`Forge class <database/forge>`
2508 - Added ability to set additional database config values in :doc:`DSN
2509 connections <database/connecting>` via the query string.
2510
2511- Libraries
2512
2513 - Set the mime type check in the :doc:`Upload
2514 class <libraries/file_uploading>` to reference the global
2515 mimes variable.
2516 - Added support for query strings to the :doc:`Pagination
2517 class <libraries/pagination>`, automatically detected or
2518 explicitly declared.
2519 - Added get_post() to the :doc:`Input class <libraries/input>`.
2520 - Documented get() in the :doc:`Input class <libraries/input>`.
2521 - Added the ability to automatically output language items as form
2522 labels in the :doc:`Language class <libraries/language>`.
2523
2524- Helpers
2525
2526 - Added a :doc:`Language helper <helpers/language_helper>`.
2527 - Added a :doc:`Number helper <helpers/number_helper>`.
2528 - :doc:`Form helper <helpers/form_helper>` refactored to allow
2529 form_open() and form_fieldset() to accept arrays or strings as
2530 arguments.
2531
2532- Other changes
2533
2534 - Improved security in xss_clean().
2535 - Removed an unused Router reference in _display_cache().
2536 - Added ability to :doc:`use xss_clean() to test
2537 images <libraries/input>` for XSS, useful for upload
2538 security.
2539 - Considerably expanded list of mobile user-agents in
2540 config/user_agents.php.
2541 - Charset information in the userguide has been moved above title
2542 for internationalization purposes (#4614).
2543 - Added "Using Associative Arrays In a Request Parameter" example to
2544 the :doc:`XMLRPC userguide page <libraries/xmlrpc>`.
2545 - Removed maxlength and size as automatically added attributes of
2546 form_input() in the :doc:`form helper <helpers/form_helper>`.
2547 - Documented the language file use of byte_format() in the :doc:`number
2548 helper <helpers/number_helper>`.
2549
2550Bug fixes for 1.6.3
2551-------------------
2552
2553- Added a language key for valid_emails in validation_lang.php.
2554- Amended fixes for bug (#3419) with parsing DSN database connections.
Andrey Andreev968bbbb2012-03-26 12:59:05 +03002555- Moved the _has_operator() function (#4535) into DB_driver from
Derek Jones8ede1a22011-10-05 13:34:52 -05002556 DB_active_rec.
2557- Fixed a syntax error in upload_lang.php.
2558- Fixed a bug (#4542) with a regular expression in the Image library.
2559- Fixed a bug (#4561) where orhaving() wasn't properly passing values.
2560- Removed some unused variables from the code (#4563).
2561- Fixed a bug where having() was not adding an = into the statement
2562 (#4568).
2563- Fixed assorted user guide typos or examples (#4574, #4706).
2564- Added quoted-printable headers to Email class when the multi-part
2565 override is used.
2566- Fixed a double opening <p> tag in the index pages of each system
2567 directory.
2568
2569Version 1.6.2
2570=============
2571
2572Release Date: May 13, 2008
2573Hg Tag: 1.6.2
2574
2575- Active Record
2576
2577 - Added the ability to prevent escaping in having() clauses.
2578 - Added rename_table() into :doc:`DBForge <./database/forge>`.
2579 - Fixed a bug that wasn't allowing escaping to be turned off if the
2580 value of a query was NULL.
2581 - DB Forge is now assigned to any models that exist after loading
2582 (#3457).
2583
2584- Database
2585
2586 - Added :doc:`Strict Mode <./database/transactions>` to database
2587 transactions.
2588 - Escape behaviour in where() clauses has changed; values in those
2589 with the "FALSE" argument are no longer escaped (ie: quoted).
2590
2591- Config
2592
2593 - Added 'application/vnd.ms-powerpoint' to list of mime types.
2594 - Added 'audio/mpg' to list of mime types.
2595 - Added new user-modifiable file constants.php containing file mode
2596 and fopen constants.
2597 - Added the ability to set CRLF settings via config in the
2598 :doc:`Email <libraries/email>` class.
2599
2600- Libraries
2601
2602 - Added increased security for filename handling in the Upload
2603 library.
2604 - Added increased security for sessions for client-side data
2605 tampering.
2606 - The MySQLi forge class is now in sync with MySQL forge.
2607 - Added the ability to set CRLF settings via config in the
2608 :doc:`Email <libraries/email>` class.
2609 - :doc:`Unit Testing <libraries/unit_testing>` results are now
2610 colour coded, and a change was made to the default template of
2611 results.
2612 - Added a valid_emails rule to the Validation class.
2613 - The :doc:`Zip class <libraries/zip>` now exits within download().
2614 - The :doc:`Zip class <libraries/zip>` has undergone a substantial
2615 re-write for speed and clarity (thanks stanleyxu for the hard work
2616 and code contribution in bug report #3425!)
2617
2618- Helpers
2619
2620 - Added a Compatibility
2621 Helper for using some common
2622 PHP 5 functions safely in applications that might run on PHP 4
2623 servers (thanks Seppo for the hard work and code contribution!)
2624 - Added form_button() in the :doc:`Form
2625 helper <helpers/form_helper>`.
2626 - Changed the radio() and checkbox() functions to default to not
2627 checked by default.
2628 - Added the ability to include an optional HTTP Response Code in the
2629 redirect() function of the :doc:`URL
2630 Helper <helpers/url_helper>`.
2631 - Modified img() in the :doc:`HTML Helper <helpers/html_helper>` to
2632 remove an unneeded space (#4208).
2633 - Modified anchor() in the :doc:`URL helper <helpers/url_helper>`
2634 to no longer add a default title= attribute (#4209).
2635 - The :doc:`Download helper <helpers/download_helper>` now exits
2636 within force_download().
2637 - Added get_dir_file_info(), get_file_info(), and
2638 get_mime_by_extension() to the :doc:`File
2639 Helper <helpers/file_helper>`.
2640 - Added symbolic_permissions() and octal_permissions() to the
2641 :doc:`File helper <helpers/file_helper>`.
2642
2643- Plugins
2644
2645 - Modified captcha generation to first look for the function
2646 imagecreatetruecolor, and fallback to imagecreate if it isn't
2647 available (#4226).
2648
2649- Other Changes
2650
2651 - Added ability for :doc:`xss_clean() <libraries/input>` to accept
2652 arrays.
2653 - Removed closing PHP tags from all PHP files to avoid accidental
2654 output and potential 'cannot modify headers' errors.
2655 - Removed "scripts" from the auto-load search path. Scripts were
2656 deprecated in Version 1.4.1 (September 21, 2006). If you still
2657 need to use them for legacy reasons, they must now be manually
2658 loaded in each Controller.
2659 - Added a :doc:`Reserved Names <general/reserved_names>` page to
2660 the userguide, and migrated reserved controller names into it.
2661 - Added a :doc:`Common Functions <general/common_functions>` page
2662 to the userguide for globally available functions.
2663 - Improved security and performance of xss_clean().
2664
2665Bugfixes for 1.6.2
2666------------------
2667
2668- Fixed a bug where SET queries were not being handled as "write"
2669 queries.
2670- Fixed a bug (#3191) with ORIG_PATH_INFO URI parsing.
2671- Fixed a bug in DB Forge, when inserting an id field (#3456).
2672- Fixed a bug in the table library that could cause identically
2673 constructed rows to be dropped (#3459).
2674- Fixed DB Driver and MySQLi result driver checking for resources
2675 instead of objects (#3461).
2676- Fixed an AR_caching error where it wasn't tracking table aliases
2677 (#3463).
2678- Fixed a bug in AR compiling, where select statements with arguments
2679 got incorrectly escaped (#3478).
2680- Fixed an incorrect documentation of $this->load->language (#3520).
2681- Fixed bugs (#3523, #4350) in get_filenames() with recursion and
2682 problems with Windows when $include_path is used.
2683- Fixed a bug (#4153) in the XML-RPC class preventing dateTime.iso8601
2684 from being used.
2685- Fixed an AR bug with or_where_not_in() (#4171).
2686- Fixed a bug with :doc:`xss_clean() <libraries/input>` that would
2687 add semicolons to GET URI variable strings.
2688- Fixed a bug (#4206) in the Directory Helper where the directory
2689 resource was not being closed, and minor improvements.
2690- Fixed a bug in the FTP library where delete_dir() was not working
2691 recursively (#4215).
2692- Fixed a Validation bug when set_rules() is used with a non-array
2693 field name and rule (#4220).
2694- Fixed a bug (#4223) where DB caching would not work for returned DB
2695 objects or multiple DB connections.
2696- Fixed a bug in the Upload library that might output the same error
2697 twice (#4390).
2698- Fixed an AR bug when joining with a table alias and table prefix
2699 (#4400).
2700- Fixed a bug in the DB class testing the $params argument.
2701- Fixed a bug in the Table library where the integer 0 in cell data
2702 would be displayed as a blank cell.
2703- Fixed a bug in link_tag() of the :doc:`URL
2704 helper <helpers/url_helper>` where a key was passed instead of
2705 a value.
2706- Fixed a bug in DB_result::row() that prevented it from returning
2707 individual fields with MySQL NULL values.
2708- Fixed a bug where SMTP emails were not having dot transformation
2709 performed on lines that begin with a dot.
2710- Fixed a bug in display_error() in the DB driver that was
2711 instantiating new Language and Exception objects, and not using the
2712 error heading.
2713- Fixed a bug (#4413) where a URI containing slashes only e.g.
Andrey Andreev84760562018-02-12 15:15:47 +02002714 '\http://example.com/index.php?//' would result in PHP errors
Derek Jones8ede1a22011-10-05 13:34:52 -05002715- Fixed an array to string conversion error in the Validation library
2716 (#4425)
2717- Fixed bug (#4451, #4299, #4339) where failed transactions will not
2718 rollback when debug mode is enabled.
2719- Fixed a bug (#4506) with overlay_watermark() in the Image library
2720 preventing support for PNG-24s with alpha transparency
2721- Fixed assorted user guide typos (#3453, #4364, #4379, #4399, #4408,
2722 #4412, #4448, #4488).
2723
2724Version 1.6.1
2725=============
2726
2727Release Date: February 12, 2008
2728Hg Tag: 1.6.1
2729
2730- Active Record
2731
2732 - Added :ref:`Active Record
2733 Caching <ar-caching>`.
2734 - Made Active Record fully database-prefix aware.
2735
2736- Database drivers
2737
2738 - Added support for setting client character set and collation for
2739 MySQLi.
2740
2741- Core Changes
2742
2743 - Modified xss_clean() to be more intelligent with its handling of
2744 URL encoded strings.
2745 - Added $_SERVER, $_FILES, $_ENV, and $_SESSION to sanitization
2746 of globals.
kenjis087a7a82011-10-20 20:08:47 +09002747 - Added a :doc:`Path Helper <./helpers/path_helper>`.
Derek Jones8ede1a22011-10-05 13:34:52 -05002748 - Simplified _reindex_segments() in the URI class.
2749 - Escaped the '-' in the default 'permitted_uri_chars' config
2750 item, to prevent errors if developers just try to add additional
2751 characters to the end of the default expression.
2752 - Modified method calling to controllers to show a 404 when a
2753 private or protected method is accessed via a URL.
2754 - Modified framework initiated 404s to log the controller and method
2755 for invalid requests.
2756
2757- Helpers
2758
2759 - Modified get_filenames() in the File Helper to return FALSE if
2760 the $source_dir is not readable.
2761
2762Bugfixes for 1.6.1
2763------------------
2764
2765- Deprecated is_numeric as a validation rule. Use of numeric and
2766 integer are preferred.
2767- Fixed bug (#3379) in DBForge with SQLite for table creation.
2768- Made Active Record fully database prefix aware (#3384).
2769- Fixed a bug where DBForge was outputting invalid SQL in Postgres by
2770 adding brackets around the tables in FROM.
2771- Changed the behaviour of Active Record's update() to make the WHERE
2772 clause optional (#3395).
2773- Fixed a bug (#3396) where certain POST variables would cause a PHP
2774 warning.
2775- Fixed a bug in query binding (#3402).
2776- Changed order of SQL keywords in the Profiler $highlight array so OR
2777 would not be highlighted before ORDER BY.
2778- Fixed a bug (#3404) where the MySQLi driver was testing if
2779 $this->conn_id was a resource instead of an object.
2780- Fixed a bug (#3419) connecting to a database via a DSN string.
2781- Fixed a bug (#3445) where the routed segment array was not re-indexed
2782 to begin with 1 when the default controller is used.
2783- Fixed assorted user guide typos.
2784
2785Version 1.6.0
2786=============
2787
2788Release Date: January 30, 2008
2789
2790- DBForge
2791
2792 - Added :doc:`DBForge <./database/forge>` to the database tools.
2793 - Moved create_database() and drop_database() into
2794 :doc:`DBForge <./database/forge>`.
2795 - Added add_field(), add_key(), create_table(), drop_table(),
2796 add_column(), drop_column(), modify_column() into
2797 :doc:`DBForge <./database/forge>`.
2798
2799- Active Record
2800
2801 - Added protect_identifiers() in :doc:`Active
Derek Jonesce79be02012-06-25 23:23:46 -07002802 Record <./database/query_builder>`.
Derek Jones8ede1a22011-10-05 13:34:52 -05002803 - All AR queries are backticked if appropriate to the database.
2804 - Added where_in(), or_where_in(), where_not_in(),
2805 or_where_not_in(), not_like() and or_not_like() to :doc:`Active
Derek Jonesce79be02012-06-25 23:23:46 -07002806 Record <./database/query_builder>`.
Derek Jones8ede1a22011-10-05 13:34:52 -05002807 - Added support for limit() into update() and delete() statements in
Derek Jonesce79be02012-06-25 23:23:46 -07002808 :doc:`Active Record <./database/query_builder>`.
Derek Jones8ede1a22011-10-05 13:34:52 -05002809 - Added empty_table() and truncate_table() to :doc:`Active
Derek Jonesce79be02012-06-25 23:23:46 -07002810 Record <./database/query_builder>`.
Derek Jones8ede1a22011-10-05 13:34:52 -05002811 - Added the ability to pass an array of tables to the delete()
Derek Jonesce79be02012-06-25 23:23:46 -07002812 statement in :doc:`Active Record <./database/query_builder>`.
Derek Jones8ede1a22011-10-05 13:34:52 -05002813 - Added count_all_results() function to :doc:`Active
Derek Jonesce79be02012-06-25 23:23:46 -07002814 Record <./database/query_builder>`.
Derek Jones8ede1a22011-10-05 13:34:52 -05002815 - Added select_max(), select_min(), select_avg() and
Derek Jonesce79be02012-06-25 23:23:46 -07002816 select_sum() to :doc:`Active Record <./database/query_builder>`.
Derek Jones8ede1a22011-10-05 13:34:52 -05002817 - Added the ability to use aliases with joins in :doc:`Active
Derek Jonesce79be02012-06-25 23:23:46 -07002818 Record <./database/query_builder>`.
Derek Jones8ede1a22011-10-05 13:34:52 -05002819 - Added a third parameter to Active Record's like() clause to
2820 control where the wildcard goes.
2821 - Added a third parameter to set() in :doc:`Active
Derek Jonesce79be02012-06-25 23:23:46 -07002822 Record <./database/query_builder>` that withholds escaping
Derek Jones8ede1a22011-10-05 13:34:52 -05002823 data.
2824 - Changed the behaviour of variables submitted to the where() clause
2825 with no values to auto set "IS NULL"
2826
2827- Other Database Related
2828
2829 - MySQL driver now requires MySQL 4.1+
2830 - Added $this->DB->save_queries variable to DB driver, enabling
2831 queries to get saved or not. Previously they were always saved.
2832 - Added $this->db->dbprefix() to manually add database prefixes.
2833 - Added 'random' as an order_by() option , and removed "rand()" as
2834 a listed option as it was MySQL only.
2835 - Added a check for NULL fields in the MySQL database backup
2836 utility.
2837 - Added "constrain_by_prefix" parameter to db->list_table()
2838 function. If set to TRUE it will limit the result to only table
2839 names with the current prefix.
2840 - Deprecated from Active Record; getwhere() for get_where();
2841 groupby() for group_by(); havingor() for having_or(); orderby()
2842 for order_by; orwhere() for or_where(); and orlike() for
2843 or_like().
2844 - Modified csv_from_result() to output CSV data more in the spirit
2845 of basic rules of RFC 4180.
2846 - Added 'char_set' and 'dbcollat' database configuration settings,
2847 to explicitly set the client communication properly.
2848 - Removed 'active_r' configuration setting and replaced with a
2849 global $active_record setting, which is more in harmony with the
2850 global nature of the behavior (#1834).
2851
2852- Core changes
2853
2854 - Added ability to load multiple views, whose content will be
2855 appended to the output in the order loaded.
2856 - Added the ability to :doc:`auto-load <./general/autoloader>`
2857 :doc:`Models <./general/models>`.
2858 - Reorganized the URI and Routes classes for better clarity.
2859 - Added Compat.php to allow function overrides for older versions of
2860 PHP or PHP environments missing certain extensions / libraries
2861 - Added memory usage, GET, URI string data, and individual query
2862 execution time to Profiler output.
2863 - Deprecated Scaffolding.
2864 - Added is_really_writable() to Common.php to provide a
2865 cross-platform reliable method of testing file/folder writability.
2866
2867- Libraries
2868
2869 - Changed the load protocol of Models to allow for extension.
2870 - Strengthened the Encryption library to help protect against man in
2871 the middle attacks when MCRYPT_MODE_CBC mode is used.
2872 - Added Flashdata variables, session_id regeneration and
2873 configurable session update times to the :doc:`Session
2874 class. <./libraries/sessions>`
2875 - Removed 'last_visit' from the Session class.
2876 - Added a language entry for valid_ip validation error.
2877 - Modified prep_for_form() in the Validation class to accept
2878 arrays, adding support for POST array validation (via callbacks
2879 only)
2880 - Added an "integer" rule into the Validation library.
2881 - Added valid_base64() to the Validation library.
2882 - Documented clear() in the :doc:`Image
vlakoffc02a4e62015-01-25 17:28:40 +01002883 Processing <./libraries/image_lib>` library.
Derek Jones8ede1a22011-10-05 13:34:52 -05002884 - Changed the behaviour of custom callbacks so that they no longer
2885 trigger the "required" rule.
2886 - Modified Upload class $_FILES error messages to be more precise.
2887 - Moved the safe mode and auth checks for the Email library into the
2888 constructor.
2889 - Modified variable names in _ci_load() method of Loader class to
2890 avoid conflicts with view variables.
2891 - Added a few additional mime type variations for CSV.
2892 - Enabled the 'system' methods for the XML-RPC Server library,
2893 except for 'system.multicall' which is still disabled.
2894
2895- Helpers & Plugins
2896
2897 - Added link_tag() to the :doc:`HTML
2898 helper. <./helpers/html_helper>`
2899 - Added img() to the :doc:`HTML helper. <./helpers/html_helper>`
2900 - Added ability to :doc:`"extend" Helpers <./general/helpers>`.
2901 - Added an :doc:`email helper <./helpers/email_helper>` into core
2902 helpers.
2903 - Added strip_quotes() function to :doc:`string
2904 helper <./helpers/string_helper>`.
2905 - Added reduce_multiples() function to :doc:`string
2906 helper <./helpers/string_helper>`.
2907 - Added quotes_to_entities() function to :doc:`string
2908 helper <./helpers/string_helper>`.
2909 - Added form_fieldset(), form_fieldset_close(), form_label(),
2910 and form_reset() function to :doc:`form
2911 helper <./helpers/form_helper>`.
2912 - Added support for external urls in form_open().
2913 - Removed support for db_backup in MySQLi due to incompatible
2914 functions.
2915 - Javascript Calendar plugin now uses the months and days from the
2916 calendar language file, instead of hard-coded values,
2917 internationalizing it.
2918
2919- Documentation Changes
2920
2921 - Added Writing Documentation section
2922 for the community to use in writing their own documentation.
2923 - Added titles to all user manual pages.
2924 - Added attributes into <html> of userguide for valid html.
Andrey Andreevae096ad2013-07-03 12:25:54 +03002925 - Added :doc:`Zip Encoding Class <libraries/zip>`
2926 to the table of contents of the userguide.
Derek Jones8ede1a22011-10-05 13:34:52 -05002927 - Moved part of the userguide menu javascript to an external file.
2928 - Documented distinct() in :doc:`Active
Derek Jonesce79be02012-06-25 23:23:46 -07002929 Record <./database/query_builder>`.
Derek Jones8ede1a22011-10-05 13:34:52 -05002930 - Documented the timezones() function in the :doc:`Date
2931 Helper <./helpers/date_helper>`.
2932 - Documented unset_userdata in the :doc:`Session
2933 class <./libraries/sessions>`.
2934 - Documented 2 config options to the :doc:`Database
2935 configuration <./database/configuration>` page.
2936
2937Bug fixes for Version 1.6.0
2938---------------------------
2939
2940- Fixed a bug (#1813) preventing using $CI->db in the same application
2941 with returned database objects.
2942- Fixed a bug (#1842) where the $this->uri->rsegments array would not
2943 include the 'index' method if routed to the controller without an
2944 implicit method.
2945- Fixed a bug (#1872) where word_limiter() was not retaining
2946 whitespace.
2947- Fixed a bug (#1890) in csv_from_result() where content that
2948 included the delimiter would break the file.
2949- Fixed a bug (#2542)in the clean_email() method of the Email class to
2950 allow for non-numeric / non-sequential array keys.
2951- Fixed a bug (#2545) in _html_entity_decode_callback() when
2952 'global_xss_filtering' is enabled.
2953- Fixed a bug (#2668) in the :doc:`parser class <./libraries/parser>`
2954 where numeric data was ignored.
2955- Fixed a bug (#2679) where the "previous" pagination link would get
2956 drawn on the first page.
2957- Fixed a bug (#2702) in _object_to_array that broke some types of
2958 inserts and updates.
2959- Fixed a bug (#2732) in the SQLite driver for PHP 4.
2960- Fixed a bug (#2754) in Pagination to scan for non-positive
2961 num_links.
2962- Fixed a bug (#2762) in the :doc:`Session
2963 library <./libraries/sessions>` where user agent matching would
2964 fail on user agents ending with a space.
2965- Fixed a bug (#2784) $field_names[] vs $Ffield_names[] in postgres
2966 and sqlite drivers.
2967- Fixed a bug (#2810) in the typography helper causing extraneous
2968 paragraph tags when string contains tags.
2969- Fixed a bug (#2849) where arguments passed to a subfolder controller
2970 method would be incorrectly shifted, dropping the 3rd segment value.
2971- Fixed a bug (#2858) which referenced a wrong variable in the Image
2972 class.
2973- Fixed a bug (#2875)when loading plugin files as _plugin. and not
2974 _pi.
2975- Fixed a bug (#2912) in get_filenames() in the :doc:`File
2976 Helper <helpers/file_helper>` where the array wasn't cleared
2977 after each call.
2978- Fixed a bug (#2974) in highlight_phrase() that caused an error with
2979 slashes.
2980- Fixed a bug (#3003) in the Encryption Library to support modes other
2981 than MCRYPT_MODE_ECB
2982- Fixed a bug (#3015) in the :doc:`User Agent
Andrey Andreevba231aa2014-01-20 16:43:41 +02002983 library <./libraries/user_agent>` where more than 2 languages
Derek Jones8ede1a22011-10-05 13:34:52 -05002984 where not reported with languages().
2985- Fixed a bug (#3017) in the :doc:`Email <./libraries/email>` library
2986 where some timezones were calculated incorrectly.
2987- Fixed a bug (#3024) in which master_dim wasn't getting reset by
2988 clear() in the Image library.
2989- Fixed a bug (#3156) in Text Helper highlight_code() causing PHP tags
2990 to be handled incorrectly.
2991- Fixed a bug (#3166) that prevented num_rows from working in Oracle.
2992- Fixed a bug (#3175) preventing certain libraries from working
2993 properly when autoloaded in PHP 4.
2994- Fixed a bug (#3267) in the Typography Helper where unordered list was
2995 listed "un.
2996- Fixed a bug (#3268) where the Router could leave '/' as the path.
2997- Fixed a bug (#3279) where the Email class was sending the wrong
2998 Content-Transfer-Encoding for some character sets.
2999- Fixed a bug (#3284) where the rsegment array would not be set
3000 properly if the requested URI contained more segments than the routed
3001 URI.
3002- Removed extraneous load of $CFG in _display_cache() of the Output
3003 class (#3285).
3004- Removed an extraneous call to loading models (#3286).
3005- Fixed a bug (#3310) with sanitization of globals in the Input class
3006 that could unset CI's global variables.
3007- Fixed a bug (#3314) which would cause the top level path to be
3008 deleted in delete_files() of the File helper.
3009- Fixed a bug (#3328) where the smiley helper might return an undefined
3010 variable.
3011- Fixed a bug (#3330) in the FTP class where a comparison wasn't
3012 getting made.
3013- Removed an unused parameter from Profiler (#3332).
3014- Fixed a bug in database driver where num_rows property wasn't
3015 getting updated.
3016- Fixed a bug in the :doc:`upload
3017 library <./libraries/file_uploading>` when allowed_files
3018 wasn't defined.
3019- Fixed a bug in word_wrap() of the Text Helper that incorrectly
3020 referenced an object.
3021- Fixed a bug in Validation where valid_ip() wasn't called properly.
3022- Fixed a bug in Validation where individual error messages for
3023 checkboxes wasn't supported.
3024- Fixed a bug in captcha calling an invalid PHP function.
3025- Fixed a bug in the cookie helper "set_cookie" function. It was not
3026 honoring the config settings.
3027- Fixed a bug that was making validation callbacks required even when
3028 not set as such.
3029- Fixed a bug in the XML-RPC library so if a type is specified, a more
3030 intelligent decision is made as to the default type.
3031- Fixed an example of comma-separated emails in the email library
3032 documentation.
3033- Fixed an example in the Calendar library for Showing Next/Previous
3034 Month Links.
3035- Fixed a typo in the database language file.
3036- Fixed a typo in the image language file "suppor" to "support".
3037- Fixed an example for XML RPC.
3038- Fixed an example of accept_charset() in the :doc:`User Agent
3039 Library <./libraries/user_agent>`.
3040- Fixed a typo in the docblock comments that had CodeIgniter spelled
3041 CodeIgnitor.
3042- Fixed a typo in the :doc:`String Helper <./helpers/string_helper>`
3043 (uniquid changed to uniqid).
3044- Fixed typos in the email Language class
3045 (email_attachment_unredable, email_filed_smtp_login), and FTP
3046 Class (ftp_unable_to_remame).
3047- Added a stripslashes() into the Upload Library.
3048- Fixed a series of grammatical and spelling errors in the language
3049 files.
3050- Fixed assorted user guide typos.
3051
3052Version 1.5.4
3053=============
3054
3055Release Date: July 12, 2007
3056
3057- Added :doc:`custom Language files <./libraries/language>` to the
3058 :doc:`autoload <./general/autoloader>` options.
3059- Added stripslashes() to the _clean_input_data() function in the
3060 :doc:`Input class <./libraries/input>` when magic quotes is on so
3061 that data will always be un-slashed within the framework.
3062- Added array to string into the :doc:`profiler <general/profiling>`.
3063- Added some additional mime types in application/config/mimes.php.
3064- Added filename_security() method to :doc:`Input
3065 library <./libraries/input>`.
3066- Added some additional arguments to the :doc:`Inflection
3067 helper <./helpers/inflector_helper>` singular() to compensate
3068 for words ending in "s". Also added a force parameter to pluralize().
3069- Added $config['charset'] to the config file. Default value is
3070 'UTF-8', used in some string handling functions.
3071- Fixed MSSQL insert_id().
3072- Fixed a logic error in the DB trans_status() function. It was
3073 incorrectly returning TRUE on failure and FALSE on success.
3074- Fixed a bug that was allowing multiple load attempts on extended
3075 classes.
3076- Fixed a bug in the bootstrap file that was incorrectly attempting to
3077 discern the full server path even when it was explicity set by the
3078 user.
3079- Fixed a bug in the escape_str() function in the MySQL driver.
3080- Fixed a typo in the :doc:`Calendar library <./libraries/calendar>`
3081- Fixed a typo in rpcs.php library
3082- Fixed a bug in the :doc:`Zip library <./libraries/zip>`, providing
3083 PC Zip file compatibility with Mac OS X
3084- Fixed a bug in router that was ignoring the scaffolding route for
3085 optimization
3086- Fixed an IP validation bug.
3087- Fixed a bug in display of POST keys in the
3088 :doc:`Profiler <./general/profiling>` output
3089- Fixed a bug in display of queries with characters that would be
3090 interpreted as HTML in the :doc:`Profiler <./general/profiling>`
3091 output
3092- Fixed a bug in display of Email class print debugger with characters
3093 that would be interpreted as HTML in the debugging output
3094- Fixed a bug in the Content-Transfer-Encoding of HTML emails with the
3095 quoted-printable MIME type
3096- Fixed a bug where one could unset certain PHP superglobals by setting
3097 them via GET or POST data
3098- Fixed an undefined function error in the insert_id() function of the
3099 PostgreSQL driver
3100- Fixed various doc typos.
3101- Documented two functions from the :doc:`String
3102 helper <./helpers/string_helper>` that were missing from the
3103 user guide: trim_slashes() and reduce_double_slashes().
3104- Docs now validate to XHTML 1 transitional
3105- Updated the XSS Filtering to take into account the IE expression()
3106 ability and improved certain deletions to prevent possible exploits
3107- Modified the Router so that when Query Strings are Enabled, the
3108 controller trigger and function trigger values are sanitized for
3109 filename include security.
3110- Modified the is_image() method in the Upload library to take into
3111 account Windows IE 6/7 eccentricities when dealing with MIMEs
3112- Modified XSS Cleaning routine to be more performance friendly and
3113 compatible with PHP 5.2's new PCRE backtrack and recursion limits.
3114- Modified the :doc:`URL Helper <./helpers/url_helper>` to type cast
3115 the $title as a string in case a numeric value is supplied
3116- Modified Form Helper form_dropdown() to type cast the keys and
3117 values of the options array as strings, allowing numeric values to be
3118 properly set as 'selected'
3119- Deprecated the use if is_numeric() in various places since it allows
3120 periods. Due to compatibility problems with ctype_digit(), making it
3121 unreliable in some installations, the following regular expression
3122 was used instead: preg_match("/[^0-9]/", $n)
3123- Deprecated: APPVER has been deprecated and replaced with CI_VERSION
3124 for clarity.
3125
3126Version 1.5.3
3127=============
3128
3129Release Date: April 15, 2007
3130
3131- Added array to string into the profiler
3132- Code Igniter references updated to CodeIgniter
3133- pMachine references updated to EllisLab
3134- Fixed a bug in the repeater function of :doc:`string
3135 helper <./helpers/string_helper>`.
3136- Fixed a bug in ODBC driver
3137- Fixed a bug in result_array() that was returning an empty array when
3138 no result is produced.
3139- Fixed a bug in the redirect function of the :doc:`url
3140 helper <./helpers/url_helper>`.
3141- Fixed an undefined variable in Loader
3142- Fixed a version bug in the Postgres driver
3143- Fixed a bug in the textarea function of the form helper for use with
3144 strings
3145- Fixed doc typos.
3146
3147Version 1.5.2
3148=============
3149
3150Release Date: February 13, 2007
3151
3152- Added subversion information
kenjis087a7a82011-10-20 20:08:47 +09003153 to the :doc:`downloads <installation/downloads>` page.
Derek Jones8ede1a22011-10-05 13:34:52 -05003154- Added support for captions in the :doc:`Table
3155 Library <./libraries/table>`
3156- Fixed a bug in the
3157 :doc:`download_helper <helpers/download_helper>` that was causing
3158 Internet Explorer to load rather than download
3159- Fixed a bug in the Active Record Join function that was not taking
3160 table prefixes into consideration.
3161- Removed unescaped variables in error messages of Input and Router
3162 classes
3163- Fixed a bug in the Loader that was causing errors on Libraries loaded
3164 twice. A debug message is now silently made in the log.
3165- Fixed a bug in the :doc:`form helper <helpers/form_helper>` that
3166 gave textarea a value attribute
3167- Fixed a bug in the :doc:`Image Library <libraries/image_lib>` that
3168 was ignoring resizing the same size image
3169- Fixed some doc typos.
3170
3171Version 1.5.1
3172=============
3173
3174Release Date: November 23, 2006
3175
3176- Added support for submitting arrays of libraries in the
3177 $this->load->library function.
3178- Added support for naming custom library files in lower or uppercase.
3179- Fixed a bug related to output buffering.
3180- Fixed a bug in the active record class that was not resetting query
3181 data after a completed query.
3182- Fixed a bug that was suppressing errors in controllers.
3183- Fixed a problem that can cause a loop to occur when the config file
3184 is missing.
3185- Fixed a bug that occurred when multiple models were loaded with the
3186 third parameter set to TRUE.
3187- Fixed an oversight that was not unsetting globals properly in the
3188 input sanitize function.
3189- Fixed some bugs in the Oracle DB driver.
3190- Fixed an incorrectly named variable in the MySQLi result driver.
3191- Fixed some doc typos.
3192
3193Version 1.5.0.1
3194===============
3195
3196Release Date: October 31, 2006
3197
3198- Fixed a problem in which duplicate attempts to load helpers and
3199 classes were not being stopped.
3200- Fixed a bug in the word_wrap() helper function.
3201- Fixed an invalid color Hex number in the Profiler class.
3202- Fixed a corrupted image in the user guide.
3203
3204Version 1.5.0
3205=============
3206
3207Release Date: October 30, 2006
3208
kenjis087a7a82011-10-20 20:08:47 +09003209- Added :doc:`DB utility class <./database/utilities>`, permitting DB
Derek Jones8ede1a22011-10-05 13:34:52 -05003210 backups, CVS or XML files from DB results, and various other
3211 functions.
3212- Added :doc:`Database Caching Class <./database/caching>`.
3213- Added :doc:`transaction support <./database/transactions>` to the
3214 database classes.
3215- Added :doc:`Profiler Class <./general/profiling>` which generates a
3216 report of Benchmark execution times, queries, and POST data at the
3217 bottom of your pages.
3218- Added :doc:`User Agent Library <./libraries/user_agent>` which
3219 allows browsers, robots, and mobile devises to be identified.
3220- Added :doc:`HTML Table Class <./libraries/table>` , enabling tables
3221 to be generated from arrays or database results.
3222- Added :doc:`Zip Encoding Library <./libraries/zip>`.
3223- Added :doc:`FTP Library <./libraries/ftp>`.
3224- Added the ability to :doc:`extend
3225 libraries <./general/creating_libraries>` and :doc:`extend core
3226 classes <./general/core_classes>`, in addition to being able to
3227 replace them.
3228- Added support for storing :doc:`models within
3229 sub-folders <./general/models>`.
3230- Added :doc:`Download Helper <./helpers/download_helper>`.
3231- Added :doc:`simple_query() <./database/queries>` function to the
3232 database classes
3233- Added :doc:`standard_date() <./helpers/date_helper>` function to
3234 the Date Helper.
3235- Added :doc:`$query->free_result() <./database/results>` to database
3236 class.
David Wosnitzad31a4e62014-12-12 16:35:35 +01003237- Added :doc:`$query->list_fields() <./database/metadata>` function to
Derek Jones8ede1a22011-10-05 13:34:52 -05003238 database class
3239- Added :doc:`$this->db->platform() <./database/helpers>` function
3240- Added new :doc:`File Helper <./helpers/file_helper>`:
3241 get_filenames()
3242- Added new helper: :doc:`Smiley Helper <./helpers/smiley_helper>`
3243- Added support for <ul> and <ol> lists in the :doc:`HTML
3244 Helper <./helpers/html_helper>`
3245- Added the ability to rewrite :doc:`short
3246 tags <./general/alternative_php>` on-the-fly, converting them
3247 to standard PHP statements, for those servers that do not support
3248 short tags. This allows the cleaner syntax to be used regardless of
3249 whether it's supported by the server.
3250- Added the ability to :doc:`rename or relocate the "application"
3251 folder <./general/managing_apps>`.
3252- Added more thorough initialization in the upload class so that all
3253 class variables are reset.
3254- Added "is_numeric" to validation, which uses the native PHP
3255 is_numeric function.
3256- Improved the URI handler to make it more reliable when the
3257 $config['uri_protocol'] item is set to AUTO.
3258- Moved most of the functions in the Controller class into the Loader
3259 class, allowing fewer reserved function names for controllers when
3260 running under PHP 5.
3261- Updated the DB Result class to return an empty array when
3262 $query->result() doesn't produce a result.
3263- Updated the input->cookie() and input->post() functions in :doc:`Input
3264 Class <./libraries/input>` to permit arrays contained cookies
3265 that are arrays to be run through the XSS filter.
3266- Documented three functions from the Validation
3267 class that were missing from the user
3268 guide: set_select(), set_radio(), and set_checkbox().
3269- Fixed a bug in the Email class related to SMTP Helo data.
3270- Fixed a bug in the word wrapping helper and function in the email
3271 class.
3272- Fixed a bug in the validation class.
3273- Fixed a bug in the typography helper that was incorrectly wrapping
3274 block level elements in paragraph tags.
3275- Fixed a problem in the form_prep() function that was double encoding
3276 entities.
3277- Fixed a bug that affects some versions of PHP when output buffering
3278 is nested.
3279- Fixed a bug that caused CI to stop working when the PHP magic
3280 __get() or __set() functions were used within models or
3281 controllers.
3282- Fixed a pagination bug that was permitting negative values in the
3283 URL.
3284- Fixed an oversight in which the Loader class was not allowed to be
3285 extended.
3286- Changed _get_config() to get_config() since the function is not a
3287 private one.
3288- **Deprecated "init" folder**. Initialization happens automatically
3289 now. :doc:`Please see documentation <./general/creating_libraries>`.
3290- **Deprecated** $this->db->field_names() USE
3291 $this->db->list_fields()
3292- **Deprecated** the $config['log_errors'] item from the config.php
3293 file. Instead, $config['log_threshold'] can be set to "0" to turn it
3294 off.
3295
3296Version 1.4.1
3297=============
3298
3299Release Date: September 21, 2006
3300
3301- Added a new feature that passes URI segments directly to your
3302 function calls as parameters. See the
3303 :doc:`Controllers <general/controllers>` page for more info.
3304- Added support for a function named _output(), which when used in
3305 your controllers will received the final rendered output from the
3306 output class. More info in the :doc:`Controllers <general/controllers>`
3307 page.
3308- Added several new functions in the :doc:`URI
3309 Class <./libraries/uri>` to let you retrieve and manipulate URI
3310 segments that have been re-routed using the :doc:`URI
3311 Routing <general/routing>` feature. Previously, the URI class did not
3312 permit you to access any re-routed URI segments, but now it does.
3313- Added :doc:`$this->output->set_header() <./libraries/output>`
3314 function, which allows you to set server headers.
3315- Updated plugins, helpers, and language classes to allow your
3316 application folder to contain its own plugins, helpers, and language
3317 folders. Previously they were always treated as global for your
3318 entire installation. If your application folder contains any of these
3319 resources they will be used *instead* the global ones.
3320- Added :doc:`Inflector helper <./helpers/inflector_helper>`.
3321- Added element() function in the :doc:`array
3322 helper <./helpers/array_helper>`.
3323- Added RAND() to active record orderby() function.
3324- Added delete_cookie() and get_cookie() to :doc:`Cookie
3325 helper <./helpers/cookie_helper>`, even though the input class
3326 has a cookie fetching function.
3327- Added Oracle database driver (still undergoing testing so it might
3328 have some bugs).
3329- Added the ability to combine pseudo-variables and php variables in
3330 the template parser class.
3331- Added output compression option to the config file.
3332- Removed the is_numeric test from the db->escape() function.
3333- Fixed a MySQLi bug that was causing error messages not to contain
3334 proper error data.
3335- Fixed a bug in the email class which was causing it to ignore
3336 explicitly set alternative headers.
3337- Fixed a bug that was causing a PHP error when the Exceptions class
3338 was called within the get_config() function since it was causing
3339 problems.
3340- Fixed an oversight in the cookie helper in which the config file
3341 cookie settings were not being honored.
3342- Fixed an oversight in the upload class. An item mentioned in the 1.4
3343 changelog was missing.
3344- Added some code to allow email attachments to be reset when sending
3345 batches of email.
3346- Deprecated the application/scripts folder. It will continue to work
3347 for legacy users, but it is recommended that you create your own
3348 :doc:`libraries <./general/libraries>` or
3349 :doc:`models <./general/models>` instead. It was originally added
3350 before CI had user libraries or models, but it's not needed anymore.
3351- Deprecated the $autoload['core'] item from the autoload.php file.
3352 Instead, please now use: $autoload['libraries']
3353- Deprecated the following database functions:
3354 $this->db->smart_escape_str() and $this->db->fields().
3355
3356Version 1.4.0
3357=============
3358
3359Release Date: September 17, 2006
3360
3361- Added :doc:`Hooks <./general/hooks>` feature, enabling you to tap
3362 into and modify the inner workings of the framework without hacking
3363 the core files.
3364- Added the ability to organize controller files :doc:`into
3365 sub-folders <general/controllers>`. Kudos to Marco for
Master Yodabd2a7e42015-03-25 02:36:31 -07003366 suggesting this (and the next two) feature.
kenjis087a7a82011-10-20 20:08:47 +09003367- Added regular expressions support for :doc:`routing
Derek Jones8ede1a22011-10-05 13:34:52 -05003368 rules <./general/routing>`.
3369- Added the ability to :doc:`remap function
3370 calls <./general/controllers>` within your controllers.
3371- Added the ability to :doc:`replace core system
3372 classes <./general/core_classes>` with your own classes.
3373- Added support for % character in URL.
3374- Added the ability to supply full URLs using the
3375 :doc:`anchor() <./helpers/url_helper>` helper function.
3376- Added mode parameter to :doc:`file_write() <./helpers/file_helper>`
3377 helper.
3378- Added support for changing the port number in the :doc:`Postgres
3379 driver <./database/configuration>`.
3380- Moved the list of "allowed URI characters" out of the Router class
3381 and into the config file.
3382- Moved the MIME type array out of the Upload class and into its own
Alan Jenkinsa51f8ec2012-11-19 10:29:52 +00003383 file in the application/config/ folder.
Derek Jones8ede1a22011-10-05 13:34:52 -05003384- Updated the Upload class to allow the upload field name to be set
3385 when calling :doc:`do_upload() <./libraries/file_uploading>`.
3386- Updated the :doc:`Config Library <./libraries/config>` to be able to
3387 load config files silently, and to be able to assign config files to
3388 their own index (to avoid collisions if you use multiple config
3389 files).
3390- Updated the URI Protocol code to allow more options so that URLs will
3391 work more reliably in different environments.
3392- Updated the form_open() helper to allow the GET method to be used.
3393- Updated the MySQLi execute() function with some code to help prevent
3394 lost connection errors.
3395- Updated the SQLite Driver to check for object support before
3396 attempting to return results as objects. If unsupported it returns an
3397 array.
3398- Updated the Models loader function to allow multiple loads of the
3399 same model.
3400- Updated the MS SQL driver so that single quotes are escaped.
3401- Updated the Postgres and ODBC drivers for better compatibility.
3402- Removed a strtolower() call that was changing URL segments to lower
3403 case.
3404- Removed some references that were interfering with PHP 4.4.1
3405 compatibility.
3406- Removed backticks from Postgres class since these are not needed.
3407- Renamed display() to _display() in the Output class to make it clear
3408 that it's a private function.
3409- Deprecated the hash() function due to a naming conflict with a native
3410 PHP function with the same name. Please use dohash() instead.
3411- Fixed an bug that was preventing the input class from unsetting GET
3412 variables.
3413- Fixed a router bug that was making it too greedy when matching end
3414 segments.
3415- Fixed a bug that was preventing multiple discrete database calls.
3416- Fixed a bug in which loading a language file was producing a "file
3417 contains no data" message.
3418- Fixed a session bug caused by the XSS Filtering feature inadvertently
3419 changing the case of certain words.
3420- Fixed some missing prefixes when using the database prefix feature.
3421- Fixed a typo in the Calendar class (cal_november).
3422- Fixed a bug in the form_checkbox() helper.
3423- Fixed a bug that was allowing the second segment of the URI to be
3424 identical to the class name.
3425- Fixed an evaluation bug in the database initialization function.
3426- Fixed a minor bug in one of the error messages in the language class.
3427- Fixed a bug in the date helper timespan function.
3428- Fixed an undefined variable in the DB Driver class.
3429- Fixed a bug in which dollar signs used as binding replacement values
3430 in the DB class would be treated as RegEx back-references.
3431- Fixed a bug in the set_hash() function which was preventing MD5 from
3432 being used.
3433- Fixed a couple bugs in the Unit Testing class.
3434- Fixed an incorrectly named variable in the Validation class.
3435- Fixed an incorrectly named variable in the URI class.
3436- Fixed a bug in the config class that was preventing the base URL from
3437 being called properly.
3438- Fixed a bug in the validation class that was not permitting callbacks
3439 if the form field was empty.
3440- Fixed a problem that was preventing scaffolding from working properly
3441 with MySQLi.
3442- Fixed some MS SQL bugs.
3443- Fixed some doc typos.
3444
3445Version 1.3.3
3446=============
3447
3448Release Date: June 1, 2006
3449
3450- Models do **not** connect automatically to the database as of this
3451 version. :doc:`More info here <./general/models>`.
3452- Updated the Sessions class to utilize the active record class when
3453 running session related queries. Previously the queries assumed MySQL
3454 syntax.
3455- Updated alternator() function to re-initialize when called with no
3456 arguments, allowing multiple calls.
3457- Fixed a bug in the active record "having" function.
3458- Fixed a problem in the validation class which was making checkboxes
3459 be ignored when required.
3460- Fixed a bug in the word_limiter() helper function. It was cutting
3461 off the fist word.
3462- Fixed a bug in the xss_clean function due to a PHP bug that affects
3463 some versions of html_entity_decode.
3464- Fixed a validation bug that was preventing rules from being set twice
3465 in one controller.
3466- Fixed a calendar bug that was not letting it use dynamically loaded
3467 languages.
3468- Fixed a bug in the active record class when using WHERE clauses with
3469 LIKE
3470- Fixed a bug in the hash() security helper.
3471- Fixed some typos.
3472
3473Version 1.3.2
3474=============
3475
3476Release Date: April 17, 2006
3477
3478- Changed the behavior of the validation class such that if a
3479 "required" rule is NOT explicitly stated for a field then all other
3480 tests get ignored.
3481- Fixed a bug in the Controller class that was causing it to look in
3482 the local "init" folder instead of the main system one.
3483- Fixed a bug in the init_pagination file. The $config item was not
3484 being set correctly.
3485- Fixed a bug in the auto typography helper that was causing
3486 inconsistent behavior.
3487- Fixed a couple bugs in the Model class.
3488- Fixed some documentation typos and errata.
3489
3490Version 1.3.1
3491=============
3492
3493Release Date: April 11, 2006
3494
3495- Added a :doc:`Unit Testing Library <./libraries/unit_testing>`.
3496- Added the ability to pass objects to the **insert()** and
3497 **update()** database functions. This feature enables you to (among
3498 other things) use your :doc:`Model class <./general/models>`
3499 variables to run queries with. See the Models page for details.
3500- Added the ability to pass objects to the :doc:`view loading
3501 function <./general/views>`: $this->load->view('my_view',
3502 $object);
3503- Added getwhere function to :doc:`Active Record
Derek Jonesce79be02012-06-25 23:23:46 -07003504 class <./database/query_builder>`.
Derek Jones8ede1a22011-10-05 13:34:52 -05003505- Added count_all function to :doc:`Active Record
Derek Jonesce79be02012-06-25 23:23:46 -07003506 class <./database/query_builder>`.
Derek Jones8ede1a22011-10-05 13:34:52 -05003507- Added language file for scaffolding and fixed a scaffolding bug that
3508 occurs when there are no rows in the specified table.
3509- Added :doc:`$this->db->last_query() <./database/queries>`, which
3510 allows you to view your last query that was run.
3511- Added a new mime type to the upload class for better compatibility.
3512- Changed how cache files are read to prevent PHP errors if the cache
3513 file contains an XML tag, which PHP wants to interpret as a short
3514 tag.
3515- Fixed a bug in a couple of the active record functions (where and
3516 orderby).
3517- Fixed a bug in the image library when realpath() returns false.
3518- Fixed a bug in the Models that was preventing libraries from being
3519 used within them.
3520- Fixed a bug in the "exact_length" function of the validation class.
3521- Fixed some typos in the user guide
3522
3523Version 1.3
3524===========
3525
3526Release Date: April 3, 2006
3527
3528- Added support for :doc:`Models <general/models>`.
3529- Redesigned the database libraries to support additional RDBMs
3530 (Postgres, MySQLi, etc.).
Derek Jonesce79be02012-06-25 23:23:46 -07003531- Redesigned the :doc:`Active Record class <./database/query_builder>`
Derek Jones8ede1a22011-10-05 13:34:52 -05003532 to enable more varied types of queries with simpler syntax, and
3533 advanced features like JOINs.
3534- Added a feature to the database class that lets you run :doc:`custom
3535 function calls <./database/call_function>`.
3536- Added support for :doc:`private functions <general/controllers>` in your
3537 controllers. Any controller function name that starts with an
3538 underscore will not be served by a URI request.
3539- Added the ability to pass your own initialization parameters to your
3540 :doc:`custom core libraries <general/creating_libraries>` when using
3541 $this->load->library()
3542- Added support for running standard :doc:`query string URLs <general/urls>`.
3543 These can be optionally enabled in your config file.
3544- Added the ability to :doc:`specify a "suffix" <general/urls>`, which will be
3545 appended to your URLs. For example, you could add .html to your URLs,
3546 making them appear static. This feature is enabled in your config
3547 file.
3548- Added a new error template for use with native PHP errors.
3549- Added "alternator" function in the :doc:`string
3550 helpers <./helpers/string_helper>`.
3551- Removed slashing from the input class. After much debate we decided
3552 to kill this feature.
3553- Change the commenting style in the scripts to the PEAR standard so
3554 that IDEs and tools like phpDocumenter can harvest the comments.
3555- Added better class and function name-spacing to avoid collisions with
3556 user developed classes. All CodeIgniter classes are now prefixed with
3557 CI\_ and all controller methods are prefixed with _ci to avoid
3558 controller collisions. A list of reserved function names can be
3559 :doc:`found here <general/controllers>`.
3560- Redesigned how the "CI" super object is referenced, depending on
3561 whether PHP 4 or 5 is being run, since PHP 5 allows a more graceful
3562 way to manage objects that utilizes a bit less resources.
3563- Deprecated: $this->db->use_table() has been deprecated. Please read
Derek Jonesce79be02012-06-25 23:23:46 -07003564 the :doc:`Active Record <./database/query_builder>` page for
Derek Jones8ede1a22011-10-05 13:34:52 -05003565 information.
3566- Deprecated: $this->db->smart_escape_str() has been deprecated.
3567 Please use this instead: $this->db->escape()
3568- Fixed a bug in the exception handler which was preventing some PHP
3569 errors from showing up.
3570- Fixed a typo in the URI class. $this->total_segment() should be
3571 plural: $this->total_segments()
3572- Fixed some typos in the default calendar template
3573- Fixed some typos in the user guide
3574
3575Version 1.2
3576===========
3577
3578Release Date: March 21, 2006
3579
3580- Redesigned some internal aspects of the framework to resolve scoping
3581 problems that surfaced during the beta tests. The problem was most
3582 notable when instantiating classes in your constructors, particularly
3583 if those classes in turn did work in their constructors.
3584- Added a global function named
3585 :doc:`get_instance() <general/ancillary_classes>` allowing the main
3586 CodeIgniter object to be accessible throughout your own classes.
3587- Added new :doc:`File Helper <./helpers/file_helper>`:
3588 delete_files()
3589- Added new :doc:`URL Helpers <./helpers/url_helper>`: base_url(),
3590 index_page()
3591- Added the ability to create your own :doc:`core
3592 libraries <general/creating_libraries>` and store them in your local
3593 application directory.
3594- Added an overwrite option to the :doc:`Upload
3595 class <./libraries/file_uploading>`, enabling files to be
3596 overwritten rather than having the file name appended.
3597- Added Javascript Calendar plugin.
3598- Added search feature to user guide. Note: This is done using Google,
3599 which at the time of this writing has not crawled all the pages of
3600 the docs.
3601- Updated the parser class so that it allows tag pars within other tag
3602 pairs.
3603- Fixed a bug in the DB "where" function.
3604- Fixed a bug that was preventing custom config files to be
3605 auto-loaded.
3606- Fixed a bug in the mysql class bind feature that prevented question
3607 marks in the replacement data.
3608- Fixed some bugs in the xss_clean function
3609
3610Version Beta 1.1
3611================
3612
3613Release Date: March 10, 2006
3614
3615- Added a :doc:`Calendaring class <./libraries/calendar>`.
3616- Added support for running :doc:`multiple
3617 applications <general/managing_apps>` that share a common CodeIgniter
3618 backend.
3619- Moved the "uri protocol" variable from the index.php file into the
3620 config.php file
3621- Fixed a problem that was preventing certain function calls from
3622 working within constructors.
3623- Fixed a problem that was preventing the $this->load->library function
3624 from working in constructors.
3625- Fixed a bug that occurred when the session class was loaded using the
3626 auto-load routine.
3627- Fixed a bug that can happen with PHP versions that do not support the
3628 E_STRICT constant
3629- Fixed a data type error in the form_radio function (form helper)
3630- Fixed a bug that was preventing the xss_clean function from being
3631 called from the validation class.
3632- Fixed the cookie related config names, which were incorrectly
3633 specified as $conf rather than $config
3634- Fixed a pagination problem in the scaffolding.
3635- Fixed a bug in the mysql class "where" function.
3636- Fixed a regex problem in some code that trimmed duplicate slashes.
3637- Fixed a bug in the br() function in the HTML helper
3638- Fixed a syntax mistake in the form_dropdown function in the Form
3639 Helper.
3640- Removed the "style" attributes form the form helpers.
3641- Updated the documentation. Added "next/previous" links to each page
3642 and fixed various typos.
3643
3644Version Beta 1.0
3645================
3646
3647Release Date: February 28, 2006
3648
3649First publicly released version.