cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
131,023 Commits 1 Branch 0 Tags
Commit Graph

156 Commits

Author SHA1 Message Date
ajacoutot
10feed8bdf Update to lighttpd-1.4.49. 
from Brad (maintainer)
 2018-05-19 06:25:31 +00:00
rpe
9a8b5ccd06 Change the shebang line from /bin/sh to /bin/ksh in all ports rc.d 
daemon scripts and bump subpackages that contain the *.rc scripts.

discussed with and OK aja@
OK tb
 2018-01-11 19:27:01 +00:00
ajacoutot
aba42d4c2a Update to lighttpd-1.4.48. 
from Brad (maintainer)
 2017-11-13 07:48:03 +00:00
ajacoutot
a5d64aae19 Update to lighttpd-1.4.47. 
from Brad (maintainer)
 2017-10-28 17:04:37 +00:00
sthen
5e964ab0df bump LIBCXX/LIBECXX/COMPILER_LIBCXX ports. 2017-07-26 22:45:14 +00:00
espie
8ac47fd9c6 use COMPILER_LIBCXX where applicable 2017-07-16 19:18:47 +00:00
sthen
073d25a37c use LIBCXX 2017-04-10 11:46:32 +00:00
ajacoutot
727cb9da7d Use level-triggered kqueue(). https://redmine.lighttpd.net/issues/2788 
from brad (maintainer)
 2017-02-12 11:19:46 +00:00
ajacoutot
84be93a5a6 Update to lighttpd-1.4.45. 
from Brad (maintainer)
 2017-01-15 10:01:41 +00:00
ajacoutot
c255845f7b tweak DESCR. 
from Brad (maintainer)
 2016-12-26 09:30:19 +00:00
ajacoutot
f612af7c0d Update to lighttpd-1.4.44. 
from Brad (maintainer)
 2016-12-25 10:33:27 +00:00
sthen
df0b2e666d Add upstream patch to lighttpd; fixes SCGI segfault regression. From Brad. 2016-11-16 12:50:51 +00:00
sthen
fd91aa170a update to lighttpd-1.4.43, from Brad 2016-11-11 10:23:34 +00:00
ajacoutot
9070d443de Bring in a commit from upstream 
- performance: use Linux extended syscalls and flags

from Brad (maintainer)
 2016-10-12 08:09:26 +00:00
ajacoutot
f47901e0b3 Update to lighttpd-1.4.41. 
from Brad (maintainer)
 2016-09-17 20:22:41 +00:00
naddy
fbe8082fe1 remove SHARED_ONLY from simple lua ports 2016-03-18 20:49:27 +00:00
jasper
6a2ec04d79 fix use after free / double free 
from Brad
 2015-12-30 07:54:42 +00:00
ajacoutot
e893870b71 Fix use after free / double free. 
from Brad (maintainer)
 2015-12-27 22:51:10 +00:00
ajacoutot
a69c69cbc3 Update to lighttpd-1.4.38. 
from Brad (maintainer)
 2015-12-08 06:59:44 +00:00
ajacoutot
cd731a2d28 Backport from upstream: 
[core] don't buffer request bodies smaller than 64k on disk

from Brad (maintainer)
 2015-10-14 05:33:02 +00:00
ajacoutot
1f7e76db11 Back port some bug fixes. 
- [core] allocate at least 4k buffer for incoming data
- [core] fix search for header end if split across chunks (fixes #2670)

from Brad (maintainer)
 2015-09-25 06:17:15 +00:00
ajacoutot
0a10c7c3db Update to lighttpd-1.4.37. 
from Brad (maintainer)
 2015-09-01 07:02:31 +00:00
sthen
5b20a18d31 sync WANTLIB 2015-08-19 18:55:04 +00:00
ajacoutot
67651e2f4a SECURITY update to lighttpd-1.4.36. 
CVE-2015-3200: escape all strings for logging (fixes #2646 log file injection)

from Brad (maintainer)
 2015-07-27 08:44:39 +00:00
ajacoutot
a751efc096 Adapr rc.d script after recent rc.subr change. 2015-07-15 14:59:15 +00:00
brad
3766d28449 Fix from upstream.. 
disable SSL3.0 by default
 2014-10-26 22:42:27 +00:00
brad
b94a402501 Switch from using MySQL to using MariaDB attempt #2. MariaDB is a drop-in replacement. 
ok sthen@
 2014-09-13 18:09:20 +00:00
brad
448b73ac7e Fix from upstream.. 
Fix bad shift in conditional netmask ".../0" handling.

ok sthen@
 2014-05-12 06:50:25 +00:00
sthen
9acf939b11 sync WANTLIB for ldap 2014-04-21 13:12:09 +00:00
brad
dabbe1246f Upstream bug fix: 
Use keep-alive timeout while waiting for HTTP headers; use always the read
timeout while waiting for the HTTP body.

ok sthen@
 2014-04-13 07:03:19 +00:00
brad
ef569462f8 Update to lighttpd 1.4.35. 
ok sthen@
 2014-03-13 10:42:29 +00:00
brad
94f0e71bfc Update to lighttpd 1.4.34. 
ok sthen@
 2014-01-23 23:24:14 +00:00
brad
4db13a4ade Two fixes from upstream.. 
- Check success of setuid, setgid, setgroups. CVE-2013-4559
- Fix regression from CVE-2013-4508 (client-cert sessions were broken)

ok sthen@
 2013-11-30 20:35:44 +00:00
brad
4a880bca0f Fix SNI handling; only use key+cert from SNI specific config. CVE-2013-4508 
ok sthen@
 2013-11-08 21:39:43 +00:00
brad
04c735a8e5 Update to lighttpd 1.4.33. 
ok sthen@
 2013-09-30 19:26:03 +00:00
ajacoutot
64a6588efb No need for pthread. 2013-06-20 08:26:13 +00:00
ajacoutot
25b3041f91 Unbreak after hx509 and ntlm removal from Kerberos. 2013-06-20 06:54:36 +00:00
ajacoutot
8613536758 Some trivial WANTLIB and tweaks to unbreak after the Heimdal update. 
Stop hardcoding the Kerberos libs and use krb5-config(1).
 2013-06-17 19:28:36 +00:00
brad
17833ea850 Revert back to using MySQL 5.1 for the time being. MariaDB 5.5 introduces 
a new libmysqlclient non-blocking API which utilizes co-routines. The X86
specific GCC ASM co-routine support hid the fact that there was an issue.
The only fallback code so far is POSIX user contexts which OpenBSD does not
support.

Input from and Ok sthen@ jasper@
 2013-06-12 20:36:33 +00:00
brad
0b77cf86a5 Switch from using MySQL to using MariaDB. MariaDB is a drop-in replacement. 
ok sthen aja
 2013-05-25 00:33:09 +00:00
sthen
d8c84bb599 Fix crypt(3) support in lighttpd's htpasswd support; permits use with bcrypt 
ok brad@
 2013-04-26 07:21:40 +00:00
brad
52bb14ab76 More fixes from upstream.. 
- Support multi line logging.
- Call ERR_clear_error only for SSL connections in CON_STATE_ERROR.
- Reject non ASCII characters in HTTP header names.

ok sthen@
 2013-03-28 16:22:32 +00:00
ajacoutot
58f1a6f9f6 USE_LIBTOOL=Yes is the default now. 2013-03-21 08:45:11 +00:00
espie
eae66e4a7b PERMIT_* / REGRESS->TEST sweep 2013-03-11 11:35:43 +00:00
sthen
f5a323c546 Don't use ${FLAVOR:L}, we only support lower-case flavours now. 
OK ajacoutot@ espie@
 2013-02-09 14:49:50 +00:00
brad
9e012eef08 Upstream bug fix: 
Fix handling of If-Modified-Since if If-None-Match is present (don't
return 412 for date parsing errors); follow current draft for HTTP/1.1,
which tells us to ignore If-Modified-Since if we have matching etags.

ok sthen@
 2013-01-25 08:00:23 +00:00
brad
c1c6b2c024 mod_fastcgi: Fix mix up of "mode" => "authorizer" in other FastCGI configs. 
ok sthen@
 2013-01-14 09:17:03 +00:00
sthen
c23e199ecb security update to lighttpd 1.4.32, fixing a trivial DoS introduced in 1.4.31 
http://download.lighttpd.net/lighttpd/security/lighttpd_sa_2012_01.txt

OK brad@ (maintainer), same update from gsoares@
 2012-11-21 21:58:18 +00:00
brad
c636810ad8 Another fix from upstream.. 
Log address of untrusted proxy with debug.log-request-handling.

ok ajacoutot@
 2012-11-21 11:41:56 +00:00
brad
fbd221f05c More fixes from upstream.. 
- Fix :port handling in $HTTP["host"] checks.
- Ignore EPIPE/ECONNRESET after SSL_shutdown.
- Add PATCH method.
- Handle ENAMETOOLONG, return 404 Not Found.

ok sthen@
 2012-11-15 10:45:23 +00:00