summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* [doc] NEWSlighttpd-1.4.51Glenn Strauss2018-10-141-1/+64
|
* [core] permit server.error_handler to static fileGlenn Strauss2018-10-141-1/+8
| | | | | | | | | This use is not recommended since it means that the response body will not contain the precise error code. x-ref: "What is the proper syntax for server.error-handler in 1.4.45" https://redmine.lighttpd.net/boards/2/topics/8320
* [core] perf: buffer_string_append_len()Glenn Strauss2018-10-101-0/+3
| | | | | | buffer_string_append_len() short-circuit common case, but preserve blank-string initialization side-effect if buffer is empty
* [mod_openssl] wolfSSL does not support SSLv2Glenn Strauss2018-10-081-9/+5
|
* [core] perf: buffer.c internal inlinesGlenn Strauss2018-10-071-8/+10
| | | | | | | | | buffer_copy_string_len() and buffer_append_string_len() now internally inline what buffer_commit() does, but do not repeat the sanity checks already enforced by buffer_string_prepare_copy() and buffer_string_prepare_append(), respectively buffer_string_set_length() short-circuit common case
* [build] CMake support for wolfSSLGlenn Strauss2018-10-071-8/+73
| | | | | | (missing HAVE_WOLFSSL_SSL_H without add_definition() suggests that there are other definitions that are not being exported for use in the build, so lighttpd built with CMake has base features only)
* [build] meson support for wolfSSLGlenn Strauss2018-10-072-12/+37
| | | | meson.build needed to change some args to lists to support meson objects
* [build] SCons support for wolfSSLGlenn Strauss2018-10-072-0/+19
|
* [build] automake support for wolfSSLGlenn Strauss2018-10-071-3/+48
|
* [mod_openssl] add support for wolfSSLGlenn Strauss2018-10-073-0/+26
| | | | | | | | | | | | requires wolfSSL library version 3.15.3 or later https://www.wolfssl.com/ https://github.com/wolfSSL/wolfssl (thx dgarske) x-ref: "Adds support for building Lighttpd with wolfSSL" https://github.com/lighttpd/lighttpd1.4/pull/92
* [mod_auth] use SHA1_Init,Update,FinalGlenn Strauss2018-10-073-13/+4
| | | | | wolfSSL does not provide the SHA1() convenience function, so use stepwise funcs SHA1_Init(), SHA1_Update(), SHA1_Final()
* [core] reject Transfer-Encoding from proxy (#2913)Glenn Strauss2018-10-071-1/+8
| | | | | | | | | | | | | | reject Transfer-Encoding from backend for mod_proxy. mod_proxy currently sends HTTP/1.0 requests to the backend, for which Transfer-Encoding: chunked is not a valid response header. Additionally, there is no value to Transfer-Encoding: chunked from backend since lighttpd mod_proxy sends HTTP/1.0 request along with Connection: close, so the backend closing the socket is the end of the response from the backend. x-ref: "Reverse proxy does not work with sandstorm" https://redmine.lighttpd.net/issues/2913
* [mod_openssl] no renegotiation in TLS 1.3 (fixes #2912)Glenn Strauss2018-10-061-2/+15
| | | | | | x-ref: "OpenSSL 1.1.1: renegotiation initiated by client, killing connection" https://redmine.lighttpd.net/issues/2912
* [core] fix missing param from prev commitGlenn Strauss2018-10-051-1/+1
|
* [core] better consistency in buffer_is_equal*()Glenn Strauss2018-10-051-16/+8
| | | | | | buffer_is_equal_caseless_string() now correctly matches against the string only up to the provided string length, since the string might not be '\0' terminated.
* [core] PATH_INFO calculation when basedir is "/" (fixes #2911)Glenn Strauss2018-10-041-1/+6
| | | | | | | | PATH_INFO calculation when basedir is "/" or empty x-ref: "pathinfo not recognized if basedir is empty" https://redmine.lighttpd.net/issues/2911
* [meson] build fixes for libmariadb and libsasl2Glenn Strauss2018-09-291-3/+5
| | | | (commented out test for libmysqlclient in favor of libmariadb)
* [build] put request.c in common srcGlenn Strauss2018-09-293-3/+4
| | | | | put request.c in common src for CMake, SCons, and meson builds (request.c is already in common source list in Makefile.am)
* [TLS] sys-crypto.h abstractionGlenn Strauss2018-09-261-0/+9
| | | | (add the header)
* [TLS] sys-crypto.h abstractionGlenn Strauss2018-09-269-26/+16
|
* [mod_secdownload] support if HMAC() is a macroGlenn Strauss2018-09-251-2/+2
| | | | | support if HMAC() is a macro, which may not handle CONST_BUF_LEN() expanding to two arguments
* [multiple] quiet compiler warnings --without-pcreGlenn Strauss2018-09-253-10/+13
| | | | quiet compiler warnings for ./configure --without-pcre
* [core] quiet coverity false positiveGlenn Strauss2018-09-251-0/+3
|
* [mod_deflate] null-check to quiet coverity warningGlenn Strauss2018-09-251-0/+1
|
* [mod_userdir] security: skip username "." and ".."Glenn Strauss2018-09-251-10/+7
| | | | | On systems without getpwnam(), disallow username "." and "..", and disallow usernames beginning with '.' if userdir.letterhomes = "enabled"
* [build] fix SCons build for mod_authn_pamGlenn Strauss2018-09-241-0/+1
|
* [core] prefer buffer_append_string_len()Glenn Strauss2018-09-234-11/+11
| | | | | prefer buffer_append_string_len() when string len is known (instead of buffer_append_string() which will recalculate strlen)
* [core] http_method_append()Glenn Strauss2018-09-236-12/+17
|
* [core] http_status_append()Glenn Strauss2018-09-236-110/+121
|
* [core] log_failed_assert() __attribute__((cold))Glenn Strauss2018-09-232-5/+41
|
* [core] inline status_counter routinesGlenn Strauss2018-09-236-42/+33
|
* [tests] #undef NDEBUG before assert.h in t/test_*Glenn Strauss2018-09-234-0/+4
|
* [core] more memory-efficient fn table for data_*Glenn Strauss2018-09-2310-69/+90
| | | | | | save 40 bytes (64-bit), or 16 bytes (32-bit) per data_* element at the cost of going through indirect function pointer to execute methods. At runtime, the reset() method is most used among them.
* [core] array_get_int_ptr()Glenn Strauss2018-09-238-17/+43
|
* [tests] t/test_array.cGlenn Strauss2018-09-236-24/+106
| | | | (more tests should be added, but starting with something has benefits)
* [multiple] code reuse: using array_*() funcsGlenn Strauss2018-09-236-114/+43
|
* [core] fix include_shell on inline shell commands (fixes #2910)Glenn Strauss2018-09-231-31/+58
| | | | | | | | regression in lighttpd 1.4.50 x-ref: "include_shell behavior change in 1.4.50" https://redmine.lighttpd.net/issues/2910
* [mod_sockproxy] add to buildGlenn Strauss2018-09-234-0/+4
| | | | (experimental)
* [mod_authn_pam] mod_auth PAM support (fixes #688)Glenn Strauss2018-09-239-0/+282
| | | | | | x-ref: "auth via pam" https://redmine.lighttpd.net/issues/688
* [mod_flv_streaming] code simplificationsGlenn Strauss2018-09-231-57/+18
|
* [doc] lighttpd.service uses network-online.targetGlenn Strauss2018-09-231-1/+1
| | | | | | | | doc/systemd/lighttpd.service now uses After=network-online.target instead of After=network.target, as recommended in https://www.freedesktop.org/wiki/Software/systemd/NetworkTarget/ (thx janik)
* [multiple] code reuse: employ array_match_*()Glenn Strauss2018-09-2310-218/+62
|
* [mod_skeleton] review and simplifyGlenn Strauss2018-09-231-65/+31
|
* [core] code reuse array_match_*() routinesGlenn Strauss2018-09-232-0/+161
|
* [mod_auth] send 401 for mismatch HTTP auth scheme (fixes #2906)Glenn Strauss2018-09-231-2/+2
| | | | | | x-ref: "Lighttpd responds with 400 not 401" https://redmine.lighttpd.net/issues/2906
* [mod_fastcgi,mod_scgi] error on oversized request (fixes #2905)Glenn Strauss2018-09-232-0/+2
| | | | | | | | | | regression in lighttpd 1.4.49 and lighttpd 1.4.50 (thx slawomir.pryczek) x-ref "oversized fcgi requests should fail gracefully" https://redmine.lighttpd.net/issues/2905
* [mod_proxy,mod_wstunnel] copy full plugin_config (fixes #2903)Glenn Strauss2018-09-232-24/+19
| | | | | | x-ref: "gw backend redesign" https://redmine.lighttpd.net/issues/2903
* [core] fastcgi.h link to Open Market License (OML) (fixes #2901)Glenn Strauss2018-09-231-0/+3
| | | | | | x-ref: "License terms of fastcgi.h" https://redmine.lighttpd.net/issues/2901
* [mod_rewrite] fix url.rewrite-repeat and url.rewrite-if-not-file (fixes #2908)Glenn Strauss2018-09-231-2/+2
| | | | | | | | regression in lighttpd 1.4.50 x-ref: "mod_rewrite now throws error ENDLESS LOOP IN rewrite-rule DETECTED" https://redmine.lighttpd.net/issues/2908
* [mod_proxy] fix proxy.forwarded and proxy.replace-http-host (fixes #2902)Glenn Strauss2018-09-231-0/+2
| | | | | | | | config settings were not being copied into proxy request context x-ref: "mod_proxy's “proxy.forwarded” option seems ignored when used with mod_auth." https://redmine.lighttpd.net/issues/2902
View Lorry Controller Status