lighttpd1.4

lighttpd/lighttpd1.4

Fork 0

Commit Graph

Select branches

Hide Pull Requests

master

personal/gstrauss/master

personal/stbuehler/1.4.48-mod-proxy-fix

personal/stbuehler/ci-build

personal/stbuehler/cleanup-build

personal/stbuehler/fix-fdevent

personal/stbuehler/mod-csrf

personal/stbuehler/mod-csrf-old

personal/stbuehler/tests-path

lighttpd-1.3.11

lighttpd-1.3.12

lighttpd-1.3.13

lighttpd-1.3.14

lighttpd-1.3.15

lighttpd-1.3.16

lighttpd-1.4.1

lighttpd-1.4.10

lighttpd-1.4.11

lighttpd-1.4.12

lighttpd-1.4.13

lighttpd-1.4.14

lighttpd-1.4.15

lighttpd-1.4.16

lighttpd-1.4.17

lighttpd-1.4.18

lighttpd-1.4.19

lighttpd-1.4.2

lighttpd-1.4.20

lighttpd-1.4.21

lighttpd-1.4.22

lighttpd-1.4.23

lighttpd-1.4.24

lighttpd-1.4.25

lighttpd-1.4.26

lighttpd-1.4.27

lighttpd-1.4.28

lighttpd-1.4.29

lighttpd-1.4.3

lighttpd-1.4.30

lighttpd-1.4.31

lighttpd-1.4.32

lighttpd-1.4.33

lighttpd-1.4.34

lighttpd-1.4.35

lighttpd-1.4.36

lighttpd-1.4.36--rc1

lighttpd-1.4.37

lighttpd-1.4.38

lighttpd-1.4.39

lighttpd-1.4.4

lighttpd-1.4.40

lighttpd-1.4.41

lighttpd-1.4.42

lighttpd-1.4.43

lighttpd-1.4.44

lighttpd-1.4.45

lighttpd-1.4.46

lighttpd-1.4.47

lighttpd-1.4.48

lighttpd-1.4.49

lighttpd-1.4.5

lighttpd-1.4.50

lighttpd-1.4.51

lighttpd-1.4.52

lighttpd-1.4.53

lighttpd-1.4.54

lighttpd-1.4.55

lighttpd-1.4.56

lighttpd-1.4.56-rc1

lighttpd-1.4.56-rc2

lighttpd-1.4.56-rc3

lighttpd-1.4.56-rc4

lighttpd-1.4.56-rc5

lighttpd-1.4.56-rc6

lighttpd-1.4.56-rc7

lighttpd-1.4.57

lighttpd-1.4.58

lighttpd-1.4.59

lighttpd-1.4.6

lighttpd-1.4.60

lighttpd-1.4.61

lighttpd-1.4.62

lighttpd-1.4.63

lighttpd-1.4.64

lighttpd-1.4.65

lighttpd-1.4.66

lighttpd-1.4.67

lighttpd-1.4.68

lighttpd-1.4.69

lighttpd-1.4.7

lighttpd-1.4.70

lighttpd-1.4.71

lighttpd-1.4.72

lighttpd-1.4.73

lighttpd-1.4.74

lighttpd-1.4.75

lighttpd-1.4.76

lighttpd-1.4.77

lighttpd-1.4.78

lighttpd-1.4.79

lighttpd-1.4.8

lighttpd-1.4.9

29ff92d9ba [core] set signal handlers before forking child processes in modules/plugins_call_set_defaults (fixes #2502) Stefan Bühler 2013-08-30 15:46:13 +00:00
9cfc080ab7 [core] allow files to be used as document-root (fixes #2475) Stefan Bühler 2013-08-30 15:02:44 +00:00
c26b0f9617 [mod_accesslog] add accesslog.syslog-level option (fixes #2480) Stefan Bühler 2013-08-30 14:13:43 +00:00
f0e5b84c27 [mod_simple_vhost] fix cache; skip module if simple-vhost.server-root is empty (thx rm for reporting) Stefan Bühler 2013-08-30 13:15:03 +00:00
95dc1ed79e [tests] add mod_simplevhost tests Stefan Bühler 2013-08-30 13:15:01 +00:00
92567b8b8f [core] check whether server.chroot exists Stefan Bühler 2013-08-30 13:14:59 +00:00
916cf7cfc0 [core] remove requirement that default doc-root has to exist, there are reasonable scenarios not requiring static files at all Stefan Bühler 2013-08-30 13:14:57 +00:00
f9d58670d5 [auth] new method "extern" to use already present REMOTE_USER (from magnet, ssl, ...) (fixes #2436) Stefan Bühler 2013-08-30 13:14:56 +00:00
2bcf65c285 [mod_auth] some cleanup, only search for matching auth.require path once Stefan Bühler 2013-08-30 13:14:54 +00:00
559b198f86 [auth] put REMOTE_USER into cgi environment, making it accessible to lua via lighty.req_env (fixes #2495) Stefan Bühler 2013-08-30 13:14:52 +00:00
93fd9ea7a4 [ssl] add option ssl.empty-fragments, defaulting to disabled (fixes #2492) Stefan Bühler 2013-08-30 13:14:50 +00:00
6d4d2118c3 [ssl] accept ssl renegotiations if they are not disabled (fixes #2491) Stefan Bühler 2013-08-30 13:14:48 +00:00
292b8d621b move ssl.disable-client-renegotiation and added note that it currently doesnt work inside conditionals Marcus Rückert 2013-08-15 10:33:00 +00:00
f8e9462d2f [autoconf] pkg-config: search for lua5.1 and lua-5.1 before lua Stefan Bühler 2013-07-31 20:23:23 +00:00
05858f6cf2 [ssl] Fix $HTTP["scheme"] conditional, could be "http" for ssl connections if the ssl $SERVER["socket"] conditional was nested (fixes #2501) Stefan Bühler 2013-07-31 20:23:21 +00:00
7147c84671 [mod_accesslog] fix log buffer <-> log file mapping Stefan Bühler 2013-07-31 20:23:18 +00:00
25a3f2e826 [network] use constants available at compile time for maximum number of chunks for writev instead of calling sysconf (fixes #2470) Stefan Bühler 2013-06-29 12:46:02 +00:00
6cdb46587c [ssl] use DH only if openssl supports it (fixes #2479) Stefan Bühler 2013-06-29 12:46:00 +00:00
3df2ec9248 [core] recognize more http methods to forward to backends (fixes #2346) Stefan Bühler 2013-06-29 10:53:24 +00:00
9b36534752 [core] return 501 Not Implemented in static file mode for all methods except GET/POST/HEAD/OPTIONS Stefan Bühler 2013-06-29 10:53:22 +00:00
f0a2c0f293 [mod_user] add test cases to check handling of encoded ~ as %7E (#2124) Stefan Bühler 2013-06-29 10:07:45 +00:00
12c4a40b28 [mod_userdir] add userdir.active option, "enabled" by default Stefan Bühler 2013-06-29 10:07:43 +00:00
46240fdb7e [mod_auth] fix distcheck, depends on openssl now for {SHA} crypted passwords Stefan Bühler 2013-06-29 09:45:31 +00:00
a6b42cc61e [auto* build] simplify autogen.sh, handle automake 1.13 test running (fixes #2490) Stefan Bühler 2013-06-29 09:45:29 +00:00
c008fd7ec8 [mod_auth] fix invalid read in digest qop=auth-int handling (fixes #2478) Stefan Bühler 2013-06-29 09:45:27 +00:00
3caf47ecd9 [fdevent-libev] fix type punning warnings Stefan Bühler 2013-06-29 09:45:25 +00:00
680b714543 [cmake] Use TARGET_LINK_LIBRARIES instead of LINK_FLAGS for library dependencies, also add -Wl,--as-needed to extra warnings (fixes #2448) Stefan Bühler 2013-06-29 09:45:23 +00:00
838d771550 added mime type for json files Marcus Rückert 2013-06-25 10:20:15 +00:00
a0e93c678b fix undefined stuff found with clang Stefan Bühler 2013-05-15 10:31:09 +00:00
661efa3f37 fix some bugs found with canalyze (fixes #2484, thx Zhenbo Xu) Stefan Bühler 2013-05-15 10:31:07 +00:00
ce4bc0c0f7 [mod_auth] fix base64_decode (#2484) Stefan Bühler 2013-05-15 10:31:04 +00:00
c26b50d9ad [mod_auth] add htpasswd -s (SHA1) support if openssl is used (needs openssl for SHA1). This doesn't use any salt, md5 with salt is probably better. Stefan Bühler 2013-04-29 13:08:25 +00:00
0342dfef1d [mod_auth] use crypt() on encrypted password instead of extracting salt first (fixes #2483) Stefan Bühler 2013-04-29 13:08:23 +00:00
b5da12c008 reject non ASCII characters in HTTP header names Stefan Bühler 2013-03-25 17:22:36 +00:00
25a2d665aa call ERR_clear_error only for ssl connections in CON_STATE_ERROR Stefan Bühler 2013-03-25 17:22:34 +00:00
0e48ef6acb [mod_fastcgi,log] support multi line logging (fixes #2252) Stefan Bühler 2013-03-25 17:22:32 +00:00
543bd249fb fix handling of If-Modified-Since if If-None-Match is present (don't return 412 for date parsing errors); follow current draft for HTTP/1.1, which tells us to ignore If-Modified-Since if we have matching etags. Stefan Bühler 2013-01-22 13:08:21 +00:00
9cd8faa1b6 mod_fastcgi: fix mix up of "mode" => "authorizer" in other fastcgi configs (fixes #2465, thx peex) Stefan Bühler 2013-01-04 13:54:38 +00:00
5aef370a2d - next is 1.4.33 Stefan Bühler 2012-11-21 12:34:49 +00:00
79fed4ec04 remove whitespace at end of header keys lighttpd-1.4.32 Stefan Bühler 2012-11-21 12:01:46 +00:00
6edfc40f93 fix DoS in Connection header value split (reported by Jesse Sipprell, CVE-2012-5533) Stefan Bühler 2012-11-21 12:01:44 +00:00
6200764f05 tests: check different combination of empty values, leading/trailing spaces and commas in the Connection header Stefan Bühler 2012-11-21 12:01:42 +00:00
29b126d5d3 mod_extforward: log address of untrusted proxy with debug.log-request-handling Stefan Bühler 2012-11-15 08:44:10 +00:00
4f4bcdd3c3 tests: make sure mod_proxy doesn't leave running processes (fixes #2435, thx kibi) Cyril Brulebois 2012-11-09 14:23:25 +00:00
4002dce596 detect "x-gzip"/"x-bzip2" as separate encodings, more strict encoding matching (fixes #2443) Stefan Bühler 2012-11-09 14:23:24 +00:00
c3a9948c75 network_server_init: fix double free and memleak on error (fixes #2440, thx kyprizel) Stefan Bühler 2012-11-09 14:23:22 +00:00
9b246c5e09 fix :port handling in $HTTP["host"] checks (fixes #2135. thx liming) Stefan Bühler 2012-11-07 14:23:00 +00:00
d4d1ff36aa add PATCH method (fixes #2424) Stefan Bühler 2012-11-07 13:53:00 +00:00
fcb3f42f11 configure.ac: remove old stuff, add some new to fix warnings in automake 1.12 (fixes #2419, thx blino) Stefan Bühler 2012-11-07 13:07:02 +00:00
d09fdd877f Handle ENAMETOOLONG, return 404 Not Found (fixes #2396, thx dererkazo) Stefan Bühler 2012-11-07 13:07:00 +00:00
db1d977dea Ignore EPIPE/ECONNRESET after SSL_shutdown (thx patdk-wk for reporting) Stefan Bühler 2012-11-06 17:14:37 +00:00
6c9d257742 Code cleanup with clang/sparse (fixes #2437, thx kibi) Stefan Bühler 2012-08-31 14:11:48 +00:00
6404e3ba09 [lighttpd-angel] Remove unused variable. Cyril Brulebois 2012-08-31 14:11:46 +00:00
b6757eaae5 [lemon] Use void* as generic pointer instead of char*. Cyril Brulebois 2012-08-31 14:11:45 +00:00
9c43331382 Use NULL instead of 0 where pointers are expected. Cyril Brulebois 2012-08-31 14:11:43 +00:00
b6b6eda292 [md5] Fix non-ANSI function definitions. Cyril Brulebois 2012-08-31 14:11:42 +00:00
0c6a564543 Fix non-ANSI function declarations. Cyril Brulebois 2012-08-31 14:11:41 +00:00
f4ba2d4f24 Mark some data as static. Cyril Brulebois 2012-08-31 14:11:39 +00:00
b6b694df3d - next is 1.4.32 Stefan Bühler 2012-08-31 14:11:37 +00:00
100ed91f2d Fix --enable-mmap handling in configure.ac lighttpd-1.4.31 Stefan Bühler 2012-05-31 15:08:36 +00:00
172eeebfaa [mod_redirect] Support url.redirect-code option (fixes #2247) Stefan Bühler 2012-05-30 16:58:34 +00:00
1ee35acc6f [mod_extforward] Support ipv6 addresses (fixes #1889) Stefan Bühler 2012-05-18 13:28:00 +00:00
3a13ab8bf2 Detect multiple -f options: show error message instead of assert (fixes #2416) Stefan Bühler 2012-05-18 12:56:30 +00:00
bbaef6ab87 fix typo in debug output Stefan Bühler 2012-05-18 12:56:28 +00:00
5677f17442 [mod_*cgi,mod_accesslog] Fix splitting :port with ipv6 (fixes #2333, thx simoncpu) Stefan Bühler 2012-04-19 13:02:13 +00:00
7187271fb6 [auth] Add "AUTH_TYPE" environment (for *cgi), remove fastcgi specific workaround, add fastcgi test case (fixes #889) Stefan Bühler 2012-04-19 13:02:11 +00:00
61047369c7 [mod_auth] Fix digest "md5-sess" implementation (Errata ID 1649, RFC 2617) (fixes #2410) Stefan Bühler 2012-04-19 13:02:09 +00:00
ab0fa7d873 Fix access log escaping of " and \\ (fixes #1551) Stefan Bühler 2012-04-19 13:02:08 +00:00
01f9debec3 Fix handling of empty header list entries in http_request_split_value, fixing invalid read in valgrind (fixes #2413) Stefan Bühler 2012-04-19 13:02:06 +00:00
e697869e34 buffer_caseless_compare: always convert letters to lowercase to get transitive results, fixing array lookups (fixes #2405) Stefan Bühler 2012-04-08 08:02:44 +00:00
f4c3a99eea Disable mmap by default (fixes #2391) Stefan Bühler 2012-02-24 18:34:20 +00:00
33f1ec6d28 [mod_compress] fix handling if etags are disabled but cache-dir is set - may lead to double response Stefan Bühler 2012-01-11 21:59:51 +00:00
35875cd515 [ssl] include more headers explicitly Stefan Bühler 2011-12-27 13:45:36 +00:00
6f0752da38 list all network handlers in lighttpd -V (fixes #2376) Stefan Bühler 2011-12-27 12:14:23 +00:00
79bcfab083 Move fdevent subsystem includes to implementation files to reduce conflicts (fixes #2373) Stefan Bühler 2011-12-25 15:35:01 +00:00
d194c09da9 [ssl] fix segfault in counting renegotiations for openssl versions without TLSEXT/SNI Stefan Bühler 2011-12-23 10:31:57 +00:00
10e5fda664 [doc] add systemd/lighttpd.service to Makefiles, so it ends up in the tarball Stefan Bühler 2011-12-23 10:31:53 +00:00
beb6709b6c - next is 1.4.31 Stefan Bühler 2011-12-18 16:35:12 +00:00
13d0440ac5 [doc] add systemd lighttpd.service file lighttpd-1.4.30 Stefan Bühler 2011-12-18 14:36:35 +00:00
d83b009d54 [doc] fix ssl config exaple for ssl.cipher-list Stefan Bühler 2011-12-18 12:58:08 +00:00
761bedd7fe [libev/cgi] fix waitpid ECHILD errors in cgi with libev (fixes #2324) Stefan Bühler 2011-12-18 12:58:04 +00:00
7bdb75fb47 [ssl] fix segfault on "ssl.honor-cipher-order" option while parsing the config Stefan Bühler 2011-12-06 20:03:42 +00:00
d964e49874 [ssl] document new options in config example Stefan Bühler 2011-12-06 11:26:51 +00:00
38e3e4a65a [ssl] fix ssl connection aborts if files are larger than the MAX_WRITE_LIMIT (256kb) Stefan Bühler 2011-12-05 17:08:17 +00:00
456d7f4790 fix compile error when ssl is not enabled Stefan Bühler 2011-11-30 20:57:54 +00:00
b748fb890d [core] accept dots in ipv6 addresses in host header (fixes #2359) Stefan Bühler 2011-11-30 20:46:49 +00:00
0f96222e7e [ssl] add option to honor server cipher order, true by default (fixes #2364) Stefan Bühler 2011-11-30 19:59:24 +00:00
8c482a496d remove copy/paste remainings from previous commit Stefan Bühler 2011-11-30 19:59:20 +00:00
a94bdd07df [ssl] count renegotiations to prevent client renegotiations Stefan Bühler 2011-11-30 18:40:08 +00:00
6c9dff7cda [mod_auth] Fix signedness error in http_auth (fixes #2370, CVE-2011-4362) Stefan Bühler 2011-11-29 22:27:11 +00:00
f15ee9becb Fix mod_status bug: always showed "0/0" in the "Read" column for uploads (fixes #2351) Stefan Bühler 2011-10-05 13:39:50 +00:00
3518ab60ed Don't overwrite 401 (auth required) with 501 (unknown method) (fixes #2341) Stefan Bühler 2011-09-05 09:32:43 +00:00
e05f1b3eec Add static-file.disable-pathinfo option to prevent handling of urls like .../secret.php/image.jpg as static file Stefan Bühler 2011-08-30 22:13:59 +00:00
cbf1baacc9 [ssl] fix build errors when Elliptic-Curve Diffie-Hellman is disabled Stefan Bühler 2011-08-22 15:32:55 +00:00
f434d514ad Limit amount of bytes we send in one go; fixes stalling in one connection and timeouts on slow systems. Stefan Bühler 2011-08-22 15:12:28 +00:00
59ebf3c818 fix some gcc warnings Stefan Bühler 2011-07-30 09:20:15 +00:00
90dd8af32b Always use our 'own' md5 implementation, fixes linking issues on MacOS (fixes #2331) Stefan Bühler 2011-07-30 09:16:03 +00:00
34abcf7309 - next is 1.4.30 Stefan Bühler 2011-07-03 16:34:59 +00:00
f0816d8db2 fdevent: add solaris eventports (fixes #2171) lighttpd-1.4.29 Stefan Bühler 2011-06-13 17:34:57 +00:00
960d34c7ea [doc] Move docs to outdated/ subdir and refer to wiki instead (fixes #2248) Stefan Bühler 2011-06-13 12:55:54 +00:00