cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
112,022 Commits 1 Branch 0 Tags
Commit Graph

141 Commits

Author SHA1 Message Date
naddy
fbe8082fe1 remove SHARED_ONLY from simple lua ports 2016-03-18 20:49:27 +00:00
jasper
6a2ec04d79 fix use after free / double free 
from Brad
 2015-12-30 07:54:42 +00:00
ajacoutot
e893870b71 Fix use after free / double free. 
from Brad (maintainer)
 2015-12-27 22:51:10 +00:00
ajacoutot
a69c69cbc3 Update to lighttpd-1.4.38. 
from Brad (maintainer)
 2015-12-08 06:59:44 +00:00
ajacoutot
cd731a2d28 Backport from upstream: 
[core] don't buffer request bodies smaller than 64k on disk

from Brad (maintainer)
 2015-10-14 05:33:02 +00:00
ajacoutot
1f7e76db11 Back port some bug fixes. 
- [core] allocate at least 4k buffer for incoming data
- [core] fix search for header end if split across chunks (fixes #2670)

from Brad (maintainer)
 2015-09-25 06:17:15 +00:00
ajacoutot
0a10c7c3db Update to lighttpd-1.4.37. 
from Brad (maintainer)
 2015-09-01 07:02:31 +00:00
sthen
5b20a18d31 sync WANTLIB 2015-08-19 18:55:04 +00:00
ajacoutot
67651e2f4a SECURITY update to lighttpd-1.4.36. 
CVE-2015-3200: escape all strings for logging (fixes #2646 log file injection)

from Brad (maintainer)
 2015-07-27 08:44:39 +00:00
ajacoutot
a751efc096 Adapr rc.d script after recent rc.subr change. 2015-07-15 14:59:15 +00:00
brad
3766d28449 Fix from upstream.. 
disable SSL3.0 by default
 2014-10-26 22:42:27 +00:00
brad
b94a402501 Switch from using MySQL to using MariaDB attempt #2. MariaDB is a drop-in replacement. 
ok sthen@
 2014-09-13 18:09:20 +00:00
brad
448b73ac7e Fix from upstream.. 
Fix bad shift in conditional netmask ".../0" handling.

ok sthen@
 2014-05-12 06:50:25 +00:00
sthen
9acf939b11 sync WANTLIB for ldap 2014-04-21 13:12:09 +00:00
brad
dabbe1246f Upstream bug fix: 
Use keep-alive timeout while waiting for HTTP headers; use always the read
timeout while waiting for the HTTP body.

ok sthen@
 2014-04-13 07:03:19 +00:00
brad
ef569462f8 Update to lighttpd 1.4.35. 
ok sthen@
 2014-03-13 10:42:29 +00:00
brad
94f0e71bfc Update to lighttpd 1.4.34. 
ok sthen@
 2014-01-23 23:24:14 +00:00
brad
4db13a4ade Two fixes from upstream.. 
- Check success of setuid, setgid, setgroups. CVE-2013-4559
- Fix regression from CVE-2013-4508 (client-cert sessions were broken)

ok sthen@
 2013-11-30 20:35:44 +00:00
brad
4a880bca0f Fix SNI handling; only use key+cert from SNI specific config. CVE-2013-4508 
ok sthen@
 2013-11-08 21:39:43 +00:00
brad
04c735a8e5 Update to lighttpd 1.4.33. 
ok sthen@
 2013-09-30 19:26:03 +00:00
ajacoutot
64a6588efb No need for pthread. 2013-06-20 08:26:13 +00:00
ajacoutot
25b3041f91 Unbreak after hx509 and ntlm removal from Kerberos. 2013-06-20 06:54:36 +00:00
ajacoutot
8613536758 Some trivial WANTLIB and tweaks to unbreak after the Heimdal update. 
Stop hardcoding the Kerberos libs and use krb5-config(1).
 2013-06-17 19:28:36 +00:00
brad
17833ea850 Revert back to using MySQL 5.1 for the time being. MariaDB 5.5 introduces 
a new libmysqlclient non-blocking API which utilizes co-routines. The X86
specific GCC ASM co-routine support hid the fact that there was an issue.
The only fallback code so far is POSIX user contexts which OpenBSD does not
support.

Input from and Ok sthen@ jasper@
 2013-06-12 20:36:33 +00:00
brad
0b77cf86a5 Switch from using MySQL to using MariaDB. MariaDB is a drop-in replacement. 
ok sthen aja
 2013-05-25 00:33:09 +00:00
sthen
d8c84bb599 Fix crypt(3) support in lighttpd's htpasswd support; permits use with bcrypt 
ok brad@
 2013-04-26 07:21:40 +00:00
brad
52bb14ab76 More fixes from upstream.. 
- Support multi line logging.
- Call ERR_clear_error only for SSL connections in CON_STATE_ERROR.
- Reject non ASCII characters in HTTP header names.

ok sthen@
 2013-03-28 16:22:32 +00:00
ajacoutot
58f1a6f9f6 USE_LIBTOOL=Yes is the default now. 2013-03-21 08:45:11 +00:00
espie
eae66e4a7b PERMIT_* / REGRESS->TEST sweep 2013-03-11 11:35:43 +00:00
sthen
f5a323c546 Don't use ${FLAVOR:L}, we only support lower-case flavours now. 
OK ajacoutot@ espie@
 2013-02-09 14:49:50 +00:00
brad
9e012eef08 Upstream bug fix: 
Fix handling of If-Modified-Since if If-None-Match is present (don't
return 412 for date parsing errors); follow current draft for HTTP/1.1,
which tells us to ignore If-Modified-Since if we have matching etags.

ok sthen@
 2013-01-25 08:00:23 +00:00
brad
c1c6b2c024 mod_fastcgi: Fix mix up of "mode" => "authorizer" in other FastCGI configs. 
ok sthen@
 2013-01-14 09:17:03 +00:00
sthen
c23e199ecb security update to lighttpd 1.4.32, fixing a trivial DoS introduced in 1.4.31 
http://download.lighttpd.net/lighttpd/security/lighttpd_sa_2012_01.txt

OK brad@ (maintainer), same update from gsoares@
 2012-11-21 21:58:18 +00:00
brad
c636810ad8 Another fix from upstream.. 
Log address of untrusted proxy with debug.log-request-handling.

ok ajacoutot@
 2012-11-21 11:41:56 +00:00
brad
fbd221f05c More fixes from upstream.. 
- Fix :port handling in $HTTP["host"] checks.
- Ignore EPIPE/ECONNRESET after SSL_shutdown.
- Add PATCH method.
- Handle ENAMETOOLONG, return 404 Not Found.

ok sthen@
 2012-11-15 10:45:23 +00:00
jasper
144e2930d7 handle multiple lua versions, for now everything builds with the "old" 5.1 in the new location. 
use FLAVOR=lua52 to use lua 5.2 with these ports.
 2012-07-10 15:22:44 +00:00
sthen
5816d1b1b6 update to lighttpd 1.4.31, rolling in the backported patches. ok brad 2012-06-01 08:20:50 +00:00
sthen
ed727655fa Add lighttpd patch: add support for IPv6 to mod_extforward. From Brad. 2012-05-25 08:24:40 +00:00
jasper
3583d15ad2 switch to lua.port.mk 2012-05-15 19:38:01 +00:00
sthen
e0eea98a9f lighttpd fixes, from upstream via Brad. 
- Fix handling of empty header list entries in http_request_split_value.
- Fix access log escaping of " and \\.
- Fix digest "md5-sess" implementation (Errata ID 1649, RFC 2617).
- Add "AUTH_TYPE" environment (for *cgi), remove fastcgi specific workaround.
- Fix splitting :port with IPv6.
 2012-04-28 09:25:25 +00:00
ajacoutot
0d3c177f99 Remove unnecessary patch. No change to the build. 
from Brad (maintainer)
 2012-04-22 10:19:09 +00:00
ajacoutot
01a6c0fdc8 Upsteam: always convert letters to lowercase to get transitive results. 
from Brad (maintainer)
 2012-04-09 07:02:11 +00:00
sthen
18e7b066bb Add a lighttpd fix from upstream. From Brad. 
- Disable mmap by default with mod_compress, if a user truncates a file we
are mmapping, reading the truncated area leads to SIGBUS.
 2012-03-06 08:23:43 +00:00
sthen
003a3d9f83 updates to lighttpd from upstream svn, from Brad 
- remove "let HEAD for 0-byte files return the Content-Length" patch,
there are some cases where this is undesirable

- fix handling if etags are disabled but cache-dir is set - may
lead to double response
 2012-01-13 23:02:15 +00:00
sthen
cbe6df0aac update to lighttpd 1.4.30, from Brad (maintainer). 2011-12-20 22:27:28 +00:00
sthen
2d32c24ac0 ssl-related fixes from lighttpd upstream via Brad 
- [ssl] count renegotiations to prevent client renegotiations
- [ssl] add option to honor server cipher order, true by default
 2011-12-03 22:26:08 +00:00
gsoares
7898a82eb0 SECURITY FIX for lighttpd: 
(CVE-2011-4362: out of bounds read due to a signedness error)

OK jasper, brad(maintainer), sthen
 2011-12-01 12:17:11 +00:00
sthen
2132e022a6 lighttpd patches; 
- let HEAD for 0-byte files return the Content-Length, from upstream via Brad
- implement reloads (graceful restart) in rc, from Ben Lovett via Brad
 2011-10-09 20:42:33 +00:00
sthen
817de92022 Fix mod_status bug: always showed "0/0" in the "Read" column for uploads. 
From Brad.
 2011-10-07 20:04:39 +00:00
espie
58fffade54 normalize pkgpath 2011-09-16 12:00:05 +00:00