Search
j0ke.net Open Build Service
>
Projects
>
ha
>
lighttpd
> Changes
Sign Up
|
Log In
Username
Password
Cancel
Overview
Repositories
Revisions
Requests
Users
Advanced
Attributes
Meta
Changes of Revision 7
[-]
[+]
Added
lighttpd.changes
@@ -0,0 +1,538 @@ +------------------------------------------------------------------- +Tue Mar 11 01:16:13 CET 2008 - mrueckert@suse.de + +- update to 1.4.19: (bnc#366526, bnc#364517, bnc#368670) + * added support for If-Range: <date> (#1346) + * added support for matching $HTTP["scheme"] in configs + * fixed initgroups() called after chroot (#1384) + * fixed case-sensitive check for Auth-Method (#1456) + * execute fcgi app without /bin/sh if used as argument to + spawn-fcgi (#1428) + * fixed a bug that made /-prefixed extensions being handled also + when matching the end of the uri in fcgi,scgi and proxy modules + (#1489) + * print error if X-LIGHTTPD-send-file cannot be done; reset + header Content-Length for send-file. Patches by Stefan Buehler + * prevent crash in certain php-fcgi configurations (#841) + * add IdleServers and Scoreboard directives in ?auto mode for + mod_status (#1507) + * open log immediately after daemonizing, fixes SIGPIPEs on + startup (#165) + * HTTPS env var should be "on" when using mod_extforward and the + X-Forwarded-Proto header is set. (#1499) + * generate ETag and Last-Modified headers for mod_ssi based on + newest modified include (#1491) + * support letterhomes in mod_userdir (#1473) + * support chained proxies in mod_extforward (#1528) + * fixed bogus "cgi died ?" if we kill the CGI process on shutdown + * fixed ECONNRESET handling in network-openssl + * fixed handling of EAGAIN in network-linux-sendfile (#657) + * reset conditional cache (#1164) + * create directories in mod_compress (was broken with + alias/userdir) (#1027) + * fixed out of range access in fd array (#1562, #372) + (CVE-2008-0983) + * mod_compress should check if the request is already handled, + e.g. by fastcgi (#1565) + * remove broken workaround for buggy Opera version with + ssl/chunked encoding (#285) + * generate etag/last-modified header for on-the-fly-compressed + files (#1171) + * req-method OPTIONS: do not insert default response if request + was denied, do not deny OPTIONS by default (#1324) + * fixed memory leak on windows (#1347) + * fixed building outside of the src dir (#1349) + * fixed including of stdint.h/inttypes.h in etag.c (#1413) + * do not add Accept-Ranges header if range-request is disabled + (#1449) + * log the ip of failed auth tries in error.log (enhancement + #1544) + * fixed RoundRobin in mod_proxy (#516) + * check for symlinks after successful pathinfo matching (#1574) + * fixed mod-proxy.t to run with a builddir outside of the src dir + * do not suppress content on "307 Temporary Redirect" (#1412) + * fixed Content-Length header if response body gets removed in + connections.c (#1412, part 2) + * do not generate a "Content-Length: 0" header for HEAD requests, + added test too + * remove compress cache file if compression or write failed + (#1150) + * fixed body handling of status 300 requests + * spawn-fcgi: only try to connect to unix socket (not tcp) before + spawning (#1575) + * fix sending source of cgi script instead of 500 error if fork + fails (CVE-2008-1111) + * fix min-procs handling in mod_scgi.c, just set to max-procs + (patch from #623) + * fix sending "408 - Timeout" instead of "410 - Gone" for + timedout urls in mod_secdownload (#1440) + * workaround #1587: require userdir.path to be set to enable + mod_userdir (empty string allowed) (CVE-2008-1270) + * make configure checks for --with-pcre, --with-zlib and + --with-bzip2 failing if the headers aren't found + * fixed handling of waitpid() == EINTR mod_ssi on solaris + +------------------------------------------------------------------- +Mon Oct 8 01:37:27 CEST 2007 - mrueckert@suse.de + +- use distro lua on 10.3 or newer + +------------------------------------------------------------------- +Mon Sep 10 00:29:16 CEST 2007 - mrueckert@suse.de + +- update to 1.4.18 (#307749) + * fixed compile error on IRIX 6.5.x on prctl() (#1333) + * fixed forwarding a SIGINT and SIGHUP when using max-workers + (#902) + * fixed FastCGI header overrun in mod_fastcgi + (reported by mattias@secweb.se) + * fixed hanging redirects with keep-alive due to missing + "Content-Length: 0" headers + * fixed crashing when using undefined environment variables in + the config + * fixed compilation of mod_mysql_vhost on irix (#1341) + +------------------------------------------------------------------- +Wed Aug 29 02:54:23 CEST 2007 - mrueckert@suse.de + +- update to 1.4.17 + * added dir-listing.set-footer in mod_dirlisting (#1277) + * added sending UID and PID for SIGTERM and SIGINT to the logs + * fixed hardcoded font-sizes in mod_dirlisting (#1267) + * fixed different ETag length on 32/64 platforms (#1279) + * fixed compression of files < 128 bytes by disabling compression + * (#1241) + * fixed mysql server reconnects (#518) + * fixed disabled keep-alive for dynamic content with HTTP/1.0 + * (#1166) + * fixed crash on mixed EOL sequences in mod_cgi + * fixed key compare (#1287) + * fixed invalid char in header values (#1286) + * fixed invalid "304 Not Modified" on broken timestamps + * fixed endless loop on shrinked files with sendfile() on BSD + (#1289) + * fixed counter overrun in ?auto in mod_status (#909) + * fixed too aggresive caching of nested conditionals (#41) + * fixed possible overflow in unix-socket path checks on BSD + (#713) + * fixed extra Content-Length header on 1xx, 204 and 304 (#1002) + * fixed handling of duplicate If-Modified-Since to return 304 + * fixed extracting status code from NPH scripts (#1125) + * fixed prctl() usage (#1310) + * removed config-check if passwd files exist (#1188) + * fixed crash when etags are disabled but the client sends one + (#1322) + * fixed crash when freeing the config in mod_alias + * fixed server.error-handler-404 breakage from 1.4.16 (#1270) + * fixed entering 404-handler from dynamic content (#948) + * added more debug infos for FAM based stat-cache + * use more LSB like paths in the sample config (#1242) + +------------------------------------------------------------------- +Thu Aug 23 01:53:40 CEST 2007 - mrueckert@suse.de + +- split the firewall files for http and https similar to apache + (#247748) + +------------------------------------------------------------------- +Tue Aug 21 00:01:48 CEST 2007 - mrueckert@suse.de + +- updated lighttpd-1.4.10_testsuite.patch + new name lighttpd-1.4.16_testsuite.patch: + - omit upstreamed snippet + +------------------------------------------------------------------- +Wed Jul 25 14:02:32 CEST 2007 - mrueckert@suse.de + +- update to 1.4.16 + * added static-file.etags, etag.use-inode, etag.use-mtime, + etag.use-size to customize the generation of ETags for static + files. (#1209) (patch by <Yusufg@gmail.com>) + * fixed typecast of NULL on execl() (#1235) + (patch by F. Denis) + * fixed circumventing url.access-deny by trailing slash (#1230) + * fixed crash on duplicate headers with trailing WS (#1232) + * fixed accepting more connections then requested (#1216) + * fixed mem-leak in mod_auth (reported by Stefan Esser) + * fixed crash with md5-sess and cnonce not set in mod_auth + (reported by Stefan Esser) + * fixed missing check for base64 encoded string in mod_auth and + Basic auth (reported by Stefan Esser) + * fixed possible crash in Auth-Digest header parser on trailing + WS in mod_auth (reported by Stefan Esser) + * fixed check on stale errno values, which broke handling of + broken fastcgi applications. (#1245) + * fixed crash on 32bit archs when debug-msgs are printed in + mod_scgi, mod_fastcgi and mod_webdav (#1263) +- removed lighttpd-1.4.x_mod_status_orig_uri.patch: + included upstream + +------------------------------------------------------------------- +Fri May 25 16:37:55 CEST 2007 - mrueckert@suse.de + +- added lighttpd-1.4.x_mod_status_orig_uri.patch: + show the original request uri in the mod_status output + +------------------------------------------------------------------- +Mon May 14 13:51:01 CEST 2007 - mrueckert@suse.de + +- synced spec with the -snapshot rpms + +------------------------------------------------------------------- +Thu Apr 19 19:55:35 CEST 2007 - mrueckert@suse.de + +- added /var/lib/lighttpd/sockets/ + +------------------------------------------------------------------- +Mon Apr 16 08:36:26 CEST 2007 - mrueckert@suse.de + +- update to 1.4.15: + * fixed broken Set-Cookie headers +- additional changes from 1.4.14: (includes fixes for bnc:#246945) + * fix crash if gethostbyaddr() failed on redirect [1718] + * properly handle 206 responses generated by *cgi scripts. + (#755) [1716] + * added HTTPS=on to the environment of cgi scripts (#861) [1684] + * fix handling of 303 (#1045) [1678] + * made the configure check for lua more portable [1677] + * added mod_extforward module [1665] + * references to the fam stat cache engine should be conditional