Hello community, here is the log from the commit of package lighttpd for openSUSE:Factory checked in at 2017-11-17 10:54:16 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/lighttpd (Old) and /work/SRC/openSUSE:Factory/.lighttpd.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "lighttpd" Fri Nov 17 10:54:16 2017 rev:35 rq:541498 version:1.4.48 Changes: -------- --- /work/SRC/openSUSE:Factory/lighttpd/lighttpd.changes 2017-10-05 12:05:32.423576317 +0200 +++ /work/SRC/openSUSE:Factory/.lighttpd.new/lighttpd.changes 2017-11-17 10:58:58.102996487 +0100 @@ -1,0 +2,30 @@ +Sun Nov 12 14:09:30 UTC 2017 - [email protected] + +- new upstream release 1.4.48 + + requires automake 1.14 + + new mod_authn_sasl module +- remove autoreconf call; was required for mod_geoip patch, which is now + upstream +- add cyrus-sasl-devel, package mod_authn_sasl + +------------------------------------------------------------------- +Tue Oct 24 09:24:07 UTC 2017 - [email protected] + +- update to 1.4.47 + + [core] stricter validation of request-URI begin + + [core] fix 1.4.46 regression in config match + + [core] normalize config addrs for != match + + [core] normalize config addrs for eq and ne + + [core] fix 1.4.46 regression in Last-Modified + +------------------------------------------------------------------- +Wed Oct 22 08:48:55 UTC 2017 - [email protected] + +- new upstream release 1.4.46 +- drop lighttpd-1.4.x_out_of_bounds_read.patch (fixed upstream) +- use systemd, drop init script +- drop support for suse_version <= 1210 +- add some new modules and packages +- drop __DATE__/__TIME__ sed hack (usage disabled upstream by default) + +------------------------------------------------------------------- Old: ---- lighttpd-1.4.x_out_of_bounds_read.patch lighttpd.init lighttpd_1.4.45-0.1.debian.tar.xz lighttpd_1.4.45-0.1.dsc lighttpd_1.4.45.orig.tar.xz New: ---- lighttpd_1.4.48-0.2.debian.tar.xz lighttpd_1.4.48-0.2.dsc lighttpd_1.4.48.orig.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ lighttpd.spec ++++++ --- /var/tmp/diff_new_pack.SUn89J/_old 2017-11-17 10:59:08.582612940 +0100 +++ /var/tmp/diff_new_pack.SUn89J/_new 2017-11-17 10:59:08.582612940 +0100 @@ -18,7 +18,7 @@ %define pkg_home %{_localstatedir}/lib/%{name} Name: lighttpd -Version: 1.4.45 +Version: 1.4.48 Release: 0 # %define pkg_name %{name} @@ -30,16 +30,13 @@ Group: Productivity/Networking/Web/Servers Url: http://www.lighttpd.net/ Source: %{name}_%{tarball_version}.orig.tar.xz -Source1: %{name}.init Source2: %{name}.sysconfig Source4: lightytest.sh Source5: lighttpd.SuSEfirewall Source6: lighttpd-ssl.SuSEfirewall Source7: lighttpd.logrotate -Patch: lighttpd-1.4.x_out_of_bounds_read.patch BuildRequires: FastCGI-devel BuildRequires: GeoIP-devel -BuildRequires: automake BuildRequires: e2fsprogs-devel BuildRequires: gdbm-devel BuildRequires: iputils @@ -48,7 +45,9 @@ BuildRequires: libmemcached-devel BuildRequires: libtool BuildRequires: libxml2-devel +BuildRequires: libdbi-devel BuildRequires: mysql-devel +BuildRequires: postgresql-devel BuildRequires: openldap2-devel BuildRequires: pcre-devel %if 0%{?suse_version} >= 1330 @@ -61,21 +60,20 @@ BuildRequires: sqlite-devel >= 3 BuildRequires: zlib-devel BuildRequires: krb5-devel +BuildRequires: cyrus-sasl-devel BuildRequires: perl(CGI) +BuildRequires: systemd +%{?systemd_requires} +BuildRequires: gamin-devel +BuildRequires: lua51-devel Requires: spawn-fcgi Requires(pre): pwdutils -Requires(post): %insserv_prereq %fillup_prereq +Requires(post): %fillup_prereq Recommends: logrotate +Recommends: %{name}-mod_openssl = %{version} Provides: http_daemon Provides: httpd BuildRoot: %{_tmppath}/%{name}-%{version}-build -%if 0%{?suse_version} > 1210 -BuildRequires: gamin-devel -BuildRequires: lua51-devel -%else -BuildRequires: fam-devel -BuildRequires: lua-devel -%endif %description Lighttpd is a secure, fast, compliant, and very flexible Web server @@ -124,7 +122,43 @@ %description mod_mysql_vhost With MySQL based vhosting you can put the information where to look for -a. document-root of a given host into a MySQL database. +a document-root of a given host into a MySQL database. + +%package mod_vhostdb_dbi +Summary: DBI based virtual hosts module for Lighttpd +Group: Productivity/Networking/Web/Servers +Requires: %{name} = %{version} + +%description mod_vhostdb_dbi +With DBI based vhosting you can put the information where to look for +the document-root of a given host into any DBI supported database. + +%package mod_vhostdb_ldap +Summary: LDAP based virtual hosts module for Lighttpd +Group: Productivity/Networking/Web/Servers +Requires: %{name} = %{version} + +%description mod_vhostdb_ldap +With LDAP based vhosting you can put the information where to look for +the document-root of a given host into an LDAP database. + +%package mod_vhostdb_mysql +Summary: MySQL based virtual hosts module for Lighttpd +Group: Productivity/Networking/Web/Servers +Requires: %{name} = %{version} + +%description mod_vhostdb_mysql +With MySQL based vhosting you can put the information where to look for +the document-root of a given host into a MySQL database. + +%package mod_vhostdb_pgsql +Summary: PostgreSQL based virtual hosts module for Lighttpd +Group: Productivity/Networking/Web/Servers +Requires: %{name} = %{version} + +%description mod_vhostdb_pgsql +With PostgreSQL based vhosting you can put the information where to look +for the document-root of a given host into a PostgreSQL database. %package mod_trigger_b4_dl Summary: Another anti hot-linking module for Lighttpd @@ -219,18 +253,18 @@ %description mod_authn_mysql A module to provide MySQL authentication in lighttpd. +%package mod_authn_sasl +Summary: SASL authentication in lighttpd +Group: Productivity/Networking/Web/Servers +Requires: %{name} = %{version} + +%description mod_authn_sasl +A module to provide SASL authentication in lighttpd. + %prep %setup -q -n %{pkg_name}-%{pkg_version} -%patch -p1 -# Do not store build TIME and DATE -modified="$(sed -n '/^----/n;s/ - .*$//;p;q' "%{_sourcedir}/%{name}.changes")" -DATE="\"$(date -d "${modified}" "+%%b %%e %%Y")\"" -TIME="\"$(date -d "${modified}" "+%%R")\"" -find . -name '*.[ch]' |\ - xargs sed -i "s/__DATE__/${DATE}/g;s/__TIME__/${TIME}/g" %build -autoreconf -fvi export CFLAGS="%{optflags} -DLDAP_DEPRECATED -W -Wmissing-prototypes -Wmissing-declarations -Wpointer-arith -Wchar-subscripts -Wformat=2 -Wbad-function-cast -std=gnu99 -fstack-protector" %configure \ --bindir=%{_sbindir} \ @@ -239,6 +273,8 @@ --enable-ipv6 \ --with-pcre \ --with-ldap \ + --with-dbi \ + --with-pgsql \ --with-mysql \ --with-openssl \ --with-krb5 \ @@ -250,6 +286,7 @@ --with-webdav-locks \ --with-fam \ --with-geoip \ + --with-sasl \ --with-attr make %{?_smp_mflags} @@ -268,12 +305,9 @@ %{buildroot}%{_var}/cache/%{name}/compress \ %{buildroot}%{_var}/log/%{name} \ %{buildroot}%{_sysconfdir}/%{name} -# -# init script -# -install -D -m 0755 %{SOURCE1} \ - %{buildroot}%{_sysconfdir}/init.d/%{name} -ln -s -f %{_sysconfdir}/init.d/%{name} %{buildroot}%{_sbindir}/rc%{name} +# systemd service +install -D -m 0644 doc/systemd/lighttpd.service %{buildroot}%{_unitdir}/%{name}.service +ln -s -f %{_sbindir}/service %{buildroot}%{_sbindir}/rc%{name} # # sample config # @@ -310,19 +344,21 @@ %pre %{_sbindir}/groupadd -r %{name} >/dev/null 2>&1 ||: %{_sbindir}/useradd -g %{name} -s /bin/false -r -c "user for %{name}" -d %{pkg_home} %{name} >/dev/null 2>&1 ||: +%service_add_pre %{name}.service %post -%fillup_and_insserv %{name} +%service_add_post %{name}.service %preun -%stop_on_removal %{name} +%service_del_preun %{name}.service %postun -%restart_on_update %{name} -%insserv_cleanup +%service_del_postun %{name}.service %files %defattr(-,root,root,-) +%{_unitdir}/%{name}.service +%{_sbindir}/rc%{name} %config(noreplace) %{_sysconfdir}/sysconfig/SuSEfirewall2.d/services/lighttpd* %config(noreplace) %{_sysconfdir}/logrotate.d/%{name} %{_sbindir}/* @@ -369,6 +405,7 @@ %{_libdir}/%{name}/mod_fastcgi.so %{_libdir}/%{name}/mod_flv_streaming.so %{_libdir}/%{name}/mod_indexfile.so +%{_libdir}/%{name}/mod_openssl.so %{_libdir}/%{name}/mod_proxy.so %{_libdir}/%{name}/mod_redirect.so %{_libdir}/%{name}/mod_rewrite.so @@ -382,8 +419,9 @@ %{_libdir}/%{name}/mod_uploadprogress.so %{_libdir}/%{name}/mod_userdir.so %{_libdir}/%{name}/mod_usertrack.so +%{_libdir}/%{name}/mod_vhostdb.so +%{_libdir}/%{name}/mod_wstunnel.so %{_mandir}/man8/*.8* -%config(noreplace) %{_sysconfdir}/init.d/%{name} %doc AUTHORS NEWS README #doc doc/*.dot %doc doc/scripts/spawn-php.sh @@ -421,13 +459,6 @@ %attr(751,%{name},%{name}) %{_var}/cache/%{name}/ %dir %attr(750,%{name},%{name}) %{_var}/log/%{name}/ -%files mod_rrdtool -%defattr(-,root,root,-) -%config(noreplace) %attr(640,root,%{name}) %{_sysconfdir}/%{name}/conf.d/rrdtool.conf -%{_libdir}/%{name}/mod_rrdtool.so -%doc doc/outdated/rrdtool.txt -%doc doc/scripts/rrdtool-graph.sh - %files mod_cml %defattr(-,root,root,-) %config(noreplace) %attr(640,root,%{name}) %{_sysconfdir}/%{name}/conf.d/cml.conf @@ -446,12 +477,35 @@ %{_libdir}/%{name}/mod_mysql_vhost.so %doc doc/outdated/mysqlvhost.txt +%files mod_vhostdb_dbi +%defattr(-,root,root,-) +%{_libdir}/%{name}/mod_vhostdb_dbi.so + +%files mod_vhostdb_ldap +%defattr(-,root,root,-) +%{_libdir}/%{name}/mod_vhostdb_ldap.so + +%files mod_vhostdb_mysql +%defattr(-,root,root,-) +%{_libdir}/%{name}/mod_vhostdb_mysql.so + +%files mod_vhostdb_pgsql +%defattr(-,root,root,-) +%{_libdir}/%{name}/mod_vhostdb_pgsql.so + %files mod_trigger_b4_dl %defattr(-,root,root,-) %config(noreplace) %attr(640,root,%{name}) %{_sysconfdir}/%{name}/conf.d/trigger_b4_dl.conf %{_libdir}/%{name}/mod_trigger_b4_dl.so %doc doc/outdated/trigger_b4_dl.txt +%files mod_rrdtool +%defattr(-,root,root,-) +%config(noreplace) %attr(640,root,%{name}) %{_sysconfdir}/%{name}/conf.d/rrdtool.conf +%doc doc/outdated/rrdtool.txt +%doc doc/scripts/rrdtool-graph.sh +%{_libdir}/%{name}/mod_rrdtool.so + %files mod_geoip %defattr(-,root,root,-) %config(noreplace) %attr(640,root,%{name}) %{_sysconfdir}/%{name}/conf.d/geoip.conf @@ -475,4 +529,8 @@ %defattr(-,root,root,-) %{_libdir}/%{name}/mod_authn_mysql.so +%files mod_authn_sasl +%defattr(-,root,root,-) +%{_libdir}/%{name}/mod_authn_sasl.so + %changelog ++++++ lighttpd_1.4.45-0.1.debian.tar.xz -> lighttpd_1.4.48-0.2.debian.tar.xz ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/NEWS new/debian/NEWS --- old/debian/NEWS 2016-10-31 13:38:11.000000000 +0100 +++ new/debian/NEWS 2017-01-14 22:07:19.000000000 +0100 @@ -1,10 +1,3 @@ -lighttpd (1.4.42-0.2) unstable; urgency=high - The authentication modules have been split into submodules; LDAP and - the new GSSAPI and MySQL authentication modules are now in separate - packages. - - -- Stefan Bühler <[email protected]> Mon, 31 Oct 2016 11:38:33 +0100 - lighttpd (1.4.31-4) unstable; urgency=high The default Debian configuration file for PHP invoked from FastCGI was diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/changelog new/debian/changelog --- old/debian/changelog 2017-01-14 12:34:51.000000000 +0100 +++ new/debian/changelog 2017-11-12 13:40:16.000000000 +0100 @@ -1,664 +1,202 @@ -lighttpd (1.4.45-0.1) unstable; urgency=low +lighttpd (1.4.48-0.2) unstable; urgency=medium * Non-maintainer upload. - * new snapshot 1.4.45 - + - next is 1.4.45 - + [mod_cgi] skip local-redir handling if to self (fixes #2779, #2108) - + [mod_webdav] fix crash when plugin_ctx cleaned up (fixes #2780) - + [mod_fastcgi] detect child exit, restart proactively - + [mod_scgi] detect child exit, restart proactively - + [TLS] ssl.read-ahead = "disable" for low mem (fixes #2778) - + [doc] NEWS - + [tests] update test skip count for !fcgi-responder - + [tests] FCGI_Finish() final request before exit - + [tests] give time for periodic jobs to detect exit - + [mod_cgi] check cgi fd for num bytes ready to read - - -- Jenkins (autobuilder) <[email protected]> Sat, 14 Jan 2017 11:34:51 +0000 - -lighttpd (1.4.44-0.1) unstable; urgency=low - - * Non-maintainer upload. - * new snapshot 1.4.44 - + - next is 1.4.44 - + [mod_scgi] fix segfault (fixes #2762) - + [mod_authn_gssapi] fix memory leak - + [config] warn if mod_authn_ldap,mysql not listed - + [mod_magnet] fix magnet_cgi_set() set of env vars (fixes #2763) - + [mod_cgi] FreeBSD 9.3/MacOSX does not have pipe2() (fixes #2765) - + [mod_extforward] fix crash on invalid IP (fixes #2766) - + [mod_fastcgi] fix segfault if all backends down (fixes #2768) - + [mod_cgi] fix out of sockets error for POST to CGI (fixes #2771) - + [mod_auth] compile fix for Mac OS X XCode (fixes #2772) - + [mod_authn_gssapi] better resource cleanup - + [core] compile fix for Mac OS X 10.6 (old) (fixes #2773) - + fix race in dynamic handler configs (reentrancy) (fixes #2774) - + [mod_authn_mysql] close mysql_conn in cleanup - + [mod_webdav] compile fix when locking not enabled - + load mod_auth & mod_authn_file in sample/test.conf - + comment out auth.backend.ldap.* in tests/*.conf - + [mod_fastcgi,mod_scgi] warn if invalid "bin-path" - + RAND_pseudo_bytes() is deprecated in openssl 1.1.0 - + openssl 1.1.0 init and cleanup - + [mod_cgi] remove direct calls to network_backend* - + [build] build network_*.c into lighttpd executable - + suggest inclusion of mod_geoip... before mod_ssi. - + set systemd settings similar to lighttpd2 - + [doc] remove reference to Linux rt-signals - + [mod_authn_gssapi] fix missing error ret, coverity - + [core] rename li_rand() to li_rand_pseudo_bytes() - + remove #include "stream.h" where not used - + [mod_cml] include lua headers before base.h - + [core] combine duplicated connection reset code - + [mod_ssi] produce content in subrequest hook - + [core] remove srv->entropy[] - + [core] defer li_rand_init() until first use - + [core] permit connection-level state in modules - + [mod_dirlisting] render dirlisting as HTML (fixes #2767) - + [mod_proxy] replace HTTP Host sent to backend (fixes #2770) - + [mod_ssi] basic recursive SSI include virtual (fixes #536) - + [mod_ssi] implement, ignore <!--#comment ... --> - + [core] consolidate duplicated read-to-close code - + [core] fix segfault when parsing a bad config file - + [core] support Transfer-Encoding: chunked req body (fixes #2156) - + [autobuild] set NO_RDYNAMIC=yes for midipix - + [mod_proxy] proxy.balance = "sticky" option (fixes #2117) - + [mod_secdownload] warn if SHA used w/o SSL crypto - + [build] compile fixes for AIX - + [build] check for pipe2() at configure time - + [mod_evhost] fix an incorrect error trace - + [tests] mark tests/docroot/www/*.pl scripts a+x - + [mod_proxy] proxy.replace-http-host enable/disable - + [mod_cgi] fall back to pipe() if pipe2() fails - + fix SCons fullstatic build with glibc pthreads - + [TLS] openssl 1.1.0 makes SSL_OP_NO_SSLv2 no-op - + [doc] NEWS - - -- Jenkins (autobuilder) <[email protected]> Sat, 24 Dec 2016 09:04:42 +0000 - -lighttpd (1.4.43-0.4) unstable; urgency=medium - - * Non-maintainer upload. - * merge debian packaging from nightlies / debian - - -- Stefan Bühler <[email protected]> Sat, 24 Dec 2016 09:55:32 +0100 - -lighttpd (1.4.43-0.3) unstable; urgency=medium - - * Non-maintainer upload. - * Add "Multi-Arch: foreign" for lighttpd-doc (fixes lintian warning) - * Pass {CPPFLAGS,CFLAGS,LDFLAGS}_FOR_BUILD buildflags (fixes hardening - warnings) - - -- Stefan Bühler <[email protected]> Sun, 04 Dec 2016 11:48:46 +0100 - -lighttpd (1.4.43-0.2) unstable; urgency=medium - - * Non-maintainer upload. - * Pull some packaging changes from debian - - -- Stefan Bühler <[email protected]> Sun, 04 Dec 2016 10:56:07 +0100 - -lighttpd (1.4.43-0.1) unstable; urgency=low - - * Non-maintainer upload. - * new snapshot 1.4.43 - + - next is 1.4.43 - + [autobuild] remove mod_authn_gssapi dep on resolv - + [mod_deflate] ignore '*' in deflate.mimetypes - + minor: make packdist.sh more convenient for me - + [autobuild] omit module stubs when missing deps - + [autobuild] rm module stub code for missing deps - + [TLS] openssl 1.1.0 hides struct bignum_st - + [autobuild] move http_cgi_ssl_env() for Mac OS X (fixes #2757) - + [core] use paccept() on NetBSD (replace accept4()) - + [TLS] remote IP conditions are valid for TLS SNI (fixes #2272) - + [doc] lighttpd-angel.8 (fixes #2254) - + [cmake] build fcgi-auth, fcgi-responder for tests - + [mod_accesslog] %{ratio}n logs compression ratio (fixes #2133) - + [mod_deflate] skip deflate if loadavg too high (fixes #1505) - + [mod_expire] expire by mimetype (fixes #423) - + [mod_evhost] partial matching patterns (fixes #1194) - + [mod_evhost] mod-evhost.t tests (#1194) - + build: use CC_FOR_BUILD for lemon when cross-compiling - + [lemon] standalone; remove #include "first.h" - + [mod_dirlisting] config header and readme files - + [config] warn if mod_authn_ldap,mysql not listed - + fix FastCGI, SCGI, proxy reconnect on failure - + [core] network_open_file_chunk() temp file opt - + [mod_rewrite] add more info in error log msg - + [core] fix fd leak when using libev (fixes #2761) - + [core] fix potential streaming tempfile corruption (fixes #2760) - + minor: coverity comments - + [mod_scgi] fix prefix matching to always match url - + move script to doc/scripts/ax_prog_cc_for_build.m4 - + [autobuild] adjust Makefile.am for FreeBSD - + [core] check fcntl O_APPEND succeeds w/ mkstemp() - + [doc] NEWS - + [autobuild] add lemon.c to src/Makefile.am - + [autobuild] build fix for lemon.c - + [autobuild] put ax_prog_cc_for_build.m4 in top directory - + [scons] workaround FreeBSD11 fullstatic link error - + [scons] only apply FreeBSD11 workaround on FreeBSD - + [mod_cgi] FreeBSD 9.3 does not have pipe2() - + [build] move some build scripts to scripts/ - + [autotools] fix configure.ac for opensuse 13.2 - + [build] fix warning for (potentially) unused func - - -- Jenkins (autobuilder) <[email protected]> Mon, 31 Oct 2016 13:40:19 +0000 - -lighttpd (1.4.42-0.2) unstable; urgency=medium - - * Non-maintainer upload. - * Package new modules - - -- Stefan Bühler <[email protected]> Mon, 31 Oct 2016 13:38:11 +0100 + * New upstream version 1.4.48. + * New package for mod_authn_sasl. -lighttpd (1.4.42-0.1) unstable; urgency=low + -- Stefan Bühler <[email protected]> Sun, 12 Nov 2017 13:40:16 +0100 - * Non-maintainer upload. - * new snapshot 1.4.42 - + - next is 1.4.42 - + [TLS] SSL_shutdown() only if handshake finished - + [mod_proxy,mod_scgi] shutdown remote only if local (#2743) - + [core] check if client half-closed TCP if POLLHUP (#2743) - + [core] enforce wait for POLLWR after EINPROGRESS (fixes #2744) - + [core] do not enter handler twice after read body - + [core] proxy,scgi omit shutdown() to backend (fixes #2743) - + [mod_dirlisting] dirlist does not handle POST - + [mod_dirlisting] js column sort for dirlist table (fixes #613, fixes #2315) - + [mod_auth] Digest auth fails after rewrite (fixes #2745) - + [mod_auth] refactor out auth backend code - + [mod_auth] refactor out auth backend code - + [mod_auth] refactor out auth backend code - + [mod_auth] extensible interface for auth backends - + [mod_auth] extensible interface for auth backends - + [core] better DragonFlyBSD support (fixes #2746) - + [mod_auth] include base.h for USE_OPENSSL def - + [mod_auth] support CRYPT-MD5-NTLM algorithm (fixes #1743) - + [mod_auth] terminate salt for CRYPT-MD5-NTLM - + [core] fix crash if ready events on abandoned fd (fixes #2748) - + fix mis-cast in unused code - + [mod_auth] http_auth_md5_hex2bin() - + [mod_auth] remove empty mod_auth.h - + [mod_auth] mod_authn_mysql.c MySQL auth backend (fixes #752, fixes #1845) - + [mod_cgi] permit CGI exec of unreadable files (fixes #2374) - + [mod_uploadprogress] add to default build - + [mod_geoip] add to default build (fixes #2705, fixes #2101, fixes #2092, fixes #2025, fixes #1962, fixes #1938) - + [mod_fastcgi] Authorizer support with Responder (fixes #321, fixes #322) - + [tests] test coverage for issues (#321, #322) - + dynamic handlers store debug flag in handler_ctx - + [mod_fastcgi] allow authorizer, responder for same path/ext (#321) - + backport mod_deflate to lighttpd 1.4 (fixes #1824, fixes #2753) - + [autobuild] test_configfile might need vector.c (fixes #2752) - + remove unused sys-mmap.h from stat_cache.c - + [mod_deflate] fix longjmp clobber compiler warning - + remove unused array type TYPE_COUNT data_count - + [mod_auth] structured data, register auth schemes - + [mod_auth] mod_authn_gssapi Kerberos auth backend (fixes #1899) - + silence warnings from clang ccc-analyzer - + [autobuild] skip two new tests if no fcgi-auth - + [SCons] define with_krb5 for SCons build - + [SCons] fix syntax error in SConstruct - + [SCons] define with_geoip for SCons build - + [CMake] fix clang -Wcast-align warnings in lemon.c - + remove excess initializers (fix compiler warnings) - + fix errors detected by Coverity Scan - + performance: use Linux extended syscalls and flags - + [mod_scgi] add uwsgi protocol support - + [mod_auth] refactor LDAP code into smaller funcs - + [mod_auth] HTTP Basic auth backends also do authz (#1817) - + [mod_auth] ldap filter subst user for multiple '$' (fixes #1508) - + [mod_auth] permit specifying ldap DN; skip search (fixes #1248) - + [autobuild] update module/feature report - + [cmake] build mod_authn_gssapi if WITH_KRB5 - + DragonFlyBSD defines __DragonFly__ (#2746) - + [mod_auth] fix printing of IP in error trace - + quiet coverity warning - + [mod_mysql_vhost] support multiple '?' replacement (fixes #2163) - + [core] make server.max-request-size scopeable (#1901) - + [core] server.max-request-field-size (fixes #2130) - + [core] optional condition in config "else" clause (fixes #1268) - + [core] restrict where config "else" clauses occur (#1268) - + silence warnings from clang ccc-analyzer - + consistent, shared code to create CGI env - + [TLS] replace env entries in https_add_ssl_entries - + [TLS] set SSL_CLIENT_M_SERIAL w/ client cert SN (fixes #2268) - + [TLS] set SSL_CLIENT_VERIFY w/ client cert (#1288, #2693) - + [TLS] set SSL_PROTOCOL, SSL_CIPHER* (fixes #2511) - + [core] rand.[ch] to use better RNGs when available - + [mod_cgi] fix pipe_cloexec() when no O_CLOEXEC - + ignore return value from fcntl() FD_CLOEXEC - + silence warnings from clang ccc-analyzer - + fix SCons build - + build w/o compiler warnings if no zlib or bz2lib - + parallelize dist package build (packdist.sh) - + [doc] NEWS - + quiet coverity warning - + add random() to list of rand() fallbacks - - -- Jenkins (autobuilder) <[email protected]> Sun, 16 Oct 2016 12:11:58 +0000 - -lighttpd (1.4.41-0.1) unstable; urgency=low +lighttpd (1.4.48-0.1) unstable; urgency=low * Non-maintainer upload. - * new snapshot 1.4.41 - + - next is 1.4.41 - + remove long-deprecated, non-functional config opts - + [config] inherit server.use-ipv6 and server.set-v6only (fixes #678) - + [build] allow AUTHOR, KEYID overrides to packdist - + [mod_auth] fix Digest auth to be better than Basic (fixes #1844) - + [doc] update memcache references to memcached - + [mod_ssi] fix #config sizefmt="bytes" - + fix some warnings reported by cppcheck - + workaround clang compiler warning - + [autobuild] move inet_pton detection later - + [core] #include <sys/filio.h> for FIONREAD (fixes #2726) - + [autobuild] clock_gettime() -lrt with glibc < 2.17 - + minor: spelling changes in some comments/messages - + [security] do not emit HTTP_PROXY to CGI env - + [build_cmake] clock_gettime() -lrt w/ glibc < 2.17 (fixes #2737) - + [core] avoid spurious trace and error abort - + [core] stay in CON_STATE_CLOSE until done with req - + [core] $HTTP["remoteip"] must handle IPv6 w/o [] - + [mod_status] show keep-alive status w/ text output (fixes #2740) - + do not set REDIRECT_URI in mod_magnet, mod_rewrite (#2738) - + revert 1.4.40 swap of REQUEST_URI, REDIRECT_URI (fixes #2738) - + [core] permit IPv6 address scope identifier - + [core] consolidate duplicated response_end code - + [TLS] better handling of SSL_ERROR_WANT_READ/WRITE - + [TLS] read all available records from SSL_read() - + [core] try AF_INET after AF_INET6 if use-ipv6 - + [core] fix result copy from getaddrinfo() - + [core] set chunkqueue tempdirs at startup - + [core] check if EAI_ADDRFAMILY is defined - + [core] set chunkqueue tempdirs at startup /var/tmp - + [security] ensure gid != 0 if server.username set (fixes #2725) - + [security] disable stat_cache if !follow-symlink (fixes #2724) - + [core] fix buffer_copy_string_hex() assert (fixes #2742) - + fix buffer.c comments to match encoded_chars_* - + [security] encode quoting chars in HTML and XML - + [cmake] always define _GNU_SOURCE - + [cmake] enable warnings for GCC and Clang - + [cmake] set cmake_minimum_required to 2.8.2 + * new snapshot 1.4.48 + + - next is 1.4.48 + + [mod_webdav] fix crash if stat fails, not ENOENT + + [core] fix build --disable-ipv6 (fixes #2832) + + [scons] sort with_* options, document missing options + + [scons] config.py(-sample) not used, remove them + + [scons] rename with_gzip to with_zlib + + [scons] add with_all option + + [scons] fix with_pgsql + + [scons] sort modules + + [scons] fix some lib dependencies + + [scons] don't link pthread twice in --whole-archive workaround + + [scons] link -static-libgcc instead of gcc_s + + [scons] don't screw env[LIBS] + + [scons] fix dbi + + [scons] add with_uuid option, document webdav relations + + [scons] check all features in autoconf block and sort them + + [scons] explicit fails when wanted features are missing + + [scons] fix warnings with deprecated ldap api + + [scons] add some generic defintions early + + [scons] wrap Configure in local Autoconf class + + [scons] split function names, break some lines + + [scons] move LIB* initializing block + + [scons] break some lines in Append(...) calls + + [scons] parse config programs output in a generic way + + [scons] Merge branch 'personal/stbuehler/scons-cleanup' + + [autobuild] require autoconf >= 2.60, automake >= 1.14 + + [autobuild] m4 and shell quoting, whitespace changes, sort some lists + + [autobuild] lots of small cleanups + + [autobuild] move some checks to the top + + [autobuild] kerberos improvements + + [autobuild] improve openssl + + [autobuild] improve crypt[_r] + + [autobuild] simple check for fork + + [autobuild] improve feature+module counting + + [autobuild] generate version id with m4 instead of awk + + [autobuild] Merge branch 'personal/stbuehler/autobuild-cleanup' + + [meson] new build system + + [core] fix var.CWD (regression in 1.4.46) (fixes #2835) + + [core] fix implicit wildcard IPv4 and IPv6 listen + + [autobuild] remove obsolete warning about mmap use + + [core] isolate sock_addr manipulation + + [stat_cache] remove debug code littered in file + + [core] cleanup unused ifndef + + [core] cleanup: consolidate FAM code in stat_cache + + [core] consolidate backend network write handlers + + [autobuild] allow sendfile() in cross-compile (fixes #2836) + + [core] quiet pedantic cc warning for excess comma + + [core] isolate backend fdevent handler defs + + [mod_openssl] error if ssl.engine in wrong section (fixes #2837) + + [core] fix lighttpd -1 one-shot graceful shutdown + + [mod_cgi] quiet trace if mod_cgi sends SIGTERM (fixes #2838) + + [build] fix link of test_configfile.c + + [core] quiet coverity false positive + + [mod_openssl] more pedantic check of return values + + [mod_openssl] allow specifying server cert chain (fixes #2692) + + [mod_openssl] ssl.openssl.ssl-conf-cmd (fixes #2758) + + [doc] NEWS - fix improper format line breaks + + [mod_authn_ldap] replace use of deprecated funcs + + [mod_authn_sasl] SASL auth (new) (fixes #2275) + + [mod_openssl] quiet trace from TCP probes (#2784) + + [core] fix dup typedef compiler warning + + [scons] fix various python2/3 incompatibilities + + [doc] fix doc/config/conf.d/fastcgi.conf example + [doc] NEWS - -- Jenkins (autobuilder) <[email protected]> Sun, 31 Jul 2016 13:56:27 +0000 + -- Jenkins (autobuilder) <[email protected]> Sun, 12 Nov 2017 11:26:54 +0000 -lighttpd (1.4.40-0.1) unstable; urgency=low +lighttpd (1.4.47-0.1) unstable; urgency=low * Non-maintainer upload. - * new snapshot 1.4.40 - + - next is 1.4.40 - + [mod_ssi] enhance support for ssi vars - + add handling for lua 5.2 and 5.3 (fixes #2674) - + use libmemcached instead of deprecated libmemcache - + add force_assert for more allocation results - + cleanup dead keyvalue code - + [autobuild] fix lua configure error handling - + [mod_cgi] use MAP_PRIVATE to mmap temporary file instead of MAP_SHARED (fixes #2715) - + [core] do not send SIGHUP to process group unless server.max-workers is used (fixes #2711) - + [mod_cgi] edge case chdir "/" when docroot "/" (fixes #2460) - + fix links to online docs in template config files - + [mod_cgi] issue trace and exit if execve() fails (closes #2302) - + [configparser] don't continue after parse error (fixes #2717) - + [core] never evaluate else branches until the previous branches are aready (fixes #2598) - + [core] fix conditional cache handling - + [core] improve conditional enabling (thx Gwenlliana, #2598) - + [buffer] use explicit integer promotion to make the code more readable - + [config] extend duplicate-array-key error (fixes #2704) - + [mod_compress] case-insensitive content-codings (fixes #2645) - + [plugins] don't include dlfcn.h if not needed (fixes #2548) - + [mod_fastcgi] 404 for X-Sendfile file not found (fixes #2474) - + [mod_cgi] send 500 if CGI ends and there is no response (fixes #2542) - + [mod_cgi] consolidate CGI cleanup code - + [mod_cgi] simplify mod_cgi_handle_subrequest() - + [mod_cgi] kill CGI if fail to write request body - + [mod_proxy] use case-insensitive comparision to filter headers, send Connection: Close to backend (fixes #421) - + [mod_dirlisting] dir-listing.hide-dotfiles = "enabled" by default (fixes #1081) - + [mod_rewrite] fix return type of process_rewrite_rules - + [mod_secdownload] fix buffer overflow in secdl_verify_mac (reported by Fortify Open Review Project) - + [mod_fastcgi,mod_scgi] fix leaking file-descriptor when backend spawning failed (reported by Fortify Open Review Project) - + [core] improve array API to prevent theoretical memory leaks - + [core] rename variable in array.c - + [core] refactor array search; raise array size limit to SSIZE_MAX - + [core] fix memory leak in configparser_merge_data - + [core] provide array_extract_element and use it - + [core] configparser: error on duplicate keys in array merge (fixes #2685) - + [core] more careful parse of $SERVER["socket"] config str (prepare #2204) - + [core] accept $SERVER["socket"] without port, use server.port as fallback (fixes #2204) - + [mod_magnet] define lua_pushglobaltable (for lua5.1) and use it (fixes #2719) - + [ssl] support disabling ssl.verifyclient.activate in SNI callback (fixes #2531) - + restart (some) syscalls after SIGCHLD interrupted them; should fix LDAP problems (fixes #2464) - + [core] log remote address on request timeouts (fixes #652) - + [autobuild] use AC_CANONICAL_HOST instead of AC_CANONICAL_TARGET (fixes #1866) - + [core] fix request_start in keep-alive requests to mark time when received first byte (fixes #2412) - + [core] truncate pidfile on exit (fixes #2695) - + consistent inclusion of config.h at top of files (fixes #2073) - + [autobuild] include first.h in make dist - + [core] add generic vector implementation - + [core] replace array weakref with vector - + [base64] fix crash due to broken force_assert - + [unittests] add test_buffer and test_base64 unit tests - + [base64] fix another crash due to broken force_assert conditions - + [buffer] refactor buffer_path_simplify (fixes #2560) - + [http_auth/mod_fastcgi] check get_http_*_name() for NULL return (#2583) - + validate return values from strtol, strtoul (fixes #2564) - + add NEWS entry for previous commit - + [mod_ssi] Add SSI vars SCRIPT_{URI,URL} and REQUEST_SCHEME (fixes #2721) - + [config] warn if server.upload-dirs has non-existent dirs (fixes #2508) - + [mod_proxy] accept LF delimited headers, not just CRLF (fixes #2594) - + [core] wait for grandchild to be ready when daemonizing (fixes #2712, thx pasdVn) - + [core] respond 411 Length Required if request has Transfer-Encoding: chunked (fixes #631) - + [core] fixed the loading for default modules if they are specified explicitly - + [core] lighttpd -tt performs preflight startup checks (fixes #411) - + [stat] mimetype.xattr-name global config option (fixes #2631) - + [configparser] fix small leak on config failure - + [mod_webdav] allow Depth: Infinity lock on file (fixes #2296) - + [mod_status] use snprintf() instead of sprintf() - + pass buf size to li_tohex() - + use li_[iu]tostrn() instead of li_[iu]tostr() - + [stream] fstat() after open() to obtain file size - + [core] clean up srv before exiting for lighttpd -[vVh] - + [mod_fastcgi,mod_scgi] check for spawning on same unix socket (fixes #319) - + [mod_cgi] always set QUERY_STRING (fixes #1339) - + [mod_auth] send charset="UTF-8" in WWW-Authenticate (fixes #1468) - + [mod_magnet] rename var for clarity (fixes #1483) - + [mod_extforward] reset cond_cache for scheme (fixes #1499) - + [mod_webdav] readdir POSIX compat (fixes #1826) - + [mod_expire] reset caching response headers for error docs (fixes #1919) - + [mod_status] page refresh option (fixes #2170) - + [mod_status] table w/ count of con states (fixes #2427) - + [mod_dirlisting] class for dir <tr> (fixes #2304) - + skip spawning backends for preflight tests (#2642) - + [core] define __STDC_WANT_LIB_EXT1__ (fixes #2722) - + [core] setrlimit max-fds <= rlim_max for non-root (fixes #2723) - + [mod_ssi] config ssi.conditional-requests - + [mod_ssi] config ssi.exec (fixes #2051) - + [mod_redirect,mod-rewrite] short-circuit if blank replacement (fixes #2085) - + [mod_indexfile] save physical path to env (fixes #448, #892) - + [core] open fd when appending file to cq (fixes #2655) - + [config] server.listen-backlog option (fixes #1825, #2116) - + [core] retry tempdirs on partial write, ENOSPC (fixes #2588) - + untangle overly complex control flow logic - + defer reading request body until handle subrequest (fixes #2541) - + mv funcs from connections.c to connections-glue.c - + defer reading request body until handle subrequest - + always poll for client POLLHUP/POLLERR events (fixes #399) - + remove handle_joblist hook - + handlers can read response before sending req body (fixes #131, #2566) - + [mod_cgi] asynchronous send of request body to CGI - + improve dynamic handler control flow logic - + [doc] add mimetype.use-xattr to conf.d/mime.conf - + [doc] enhance error msg for backend server config - + [doc] add ref to RFC 7232 for conditional requests - + make (compile and link) cleanly under cygwin - + [core] compile with upcoming openssl 1.1.0 release (fixes #2727) - + fix some warnings reported by static analysis tool - + [core] set REDIRECT_STATUS to error_handler_saved_status (fixes #1828) - + remove unused con->error_handler member - + [core] server.error-handler new directive for error pages (fixes #2702) - + set REDIRECT_URI in mod_rewrite, mod_magnet - + [doc] add server.error-handler - + server.error-handler new directive for error pages - + [core] support IPv6 in $HTTP["remote-ip"] CIDR cond match (fixes #2706) - + [doc] NEWS - + [core] http_response_send_file() shared code (#2017) - + [mod_fastcgi] use http_response_xsendfile() (fixes #799, fixes #851, fixes #2017, fixes #2076) - + [mod_scgi] X-Sendfile feature (fixes #2253) - + [mod_cgi] X-Sendfile feature (fixes #2313) - + [mod_cgi,mod_fastcgi,mod_scgi] X-Sendfile features - + [mod_webdav] lseek,read if fs can not mmap (#2666, fixes #962) - + [mod_compress] use mmap and trap SIGBUS (#2666, fixes #1879) - + fallback to lseek()/read() if mmap() fails (#fixes 2666) - + [mod_auth] skip blank lines and comment lines (fixes #2327) - + [core] fallback to write if sendfile not supported (fixes #471, #987) - + minor: add missing #include <errno.h> - + [core] preserve PATH_INFO case on case-insensitive fs (fixes #406) - + [doc] add mimetype.use-xattr to create-mime.conf.pl - + [doc] NEWS - + [mod_ssi, mod_cml] set DOCUMENT_ROOT to basedir (fixes #2383) - + [core] cmd line opt to shutdown after idle time limit (fixes #2696) - + [network] separate addr trans from socket creation - + [core] lighttpd -1 handles single request on stdin socket (fixes #1584) - + lighttpd run modes for idle timeout, one-shot - + [mod_fastcgi,mod_scgi] IPv6 support (fixes #2372) - + [mod_status] add JSON output option (fixed #2432) - + [mod_webdav] map COPY/MOVE Destination to aliases (fixes #1787) - + [mod_webdav] improve PROPFIND,PROPPATCH (#1818, #1953) - + [mod_webdav] improve PROPFIND,PROPPATCH; map COPY/MOVE Destination - + [doc] NEWS - + reset response headers, write_queue for error docs - + fix typo in new cgi.x-sendfile directives - + clean up oneshot_fd resource upon startup error - + minor: fix compiler warning for extra ';' - + build with libressl - + [core] fix IPv6 address + port parsing (#2204) - + static build instructions using SCons or make - + [core] fix config merge of array lists - + [core] simplify config merge of array lists - + [core] add default modules while processing server config - + [mod_auth] preserve WWW-Authenticate for error docs (fixes #2730) - + check close() return code after writing to file + * new snapshot 1.4.47 + + - next is 1.4.47 + + [mod_authn_gssapi] needs -lcom_err under Darwin + + [core] stricter validation of request-URI begin + + [core] fix 1.4.46 regression in config match (fixes #2830) + + [core] normalize config addrs for != match (#2830) + + [core] normalize config addrs for eq and ne (#2830) + + [doc] use https:// URLs to .lighttpd.net resources + + [core] fix 1.4.46 regression in Last-Modified + [doc] NEWS - + adjustments for openssl 1.1.0 pre-release - + [config] support include file glob (fixes #1221) - + [mod_evasive] 302 redirect option if limit reached (fixes #2199) - + [build] enhancements for cross-compiling (fixes #2276) - + [mod_accesslog] report aborted con state with %X (fixes #1890) - + [mod_ssi] fix SSI statement parser - + [mod_ssi] include relative to alias,userdir (fixes #222) - + [mod_ssi] add PCRE_* options to constrain regex - + [mod_ssi] more flexible quoting (fixes #1768) - + [core] wrap IPv6 literal in "[]" in redirect URL - + [mod_ssi] fix parse of tag across buf boundary (fixes #2732) - + [mod_cgi,mod_scgi] X-Sendfile sets file_started (fixes #2733) - + [mod_fastcgi] no chunked response w/ X-Sendfile (fixes #2733) - + [config] opts for http header parsing strictness (fixes #551, fixes #1086, fixes #1184, fixes #2143, #2258, #2281, fixes #946, fixes #1330, fixes #602, #1016) - + [config] normalize IP strings in lighttpd.conf - + [build_cmake] use MODULE on Mac OS X (fixes #1761) - + minor: quiet some compiler warnings - + use buffer_string_set_length() to truncate strings - + use buffer_string_set_length() to truncate strings - + [config] server.bsd-accept-filter option - + [mod_webdav] create file w/ LOCK request if ENOENT - + [doc] NEWS - + [mod_webdav] getetag and lockdiscovery live props - + [mod_webdav] create file w/ LOCK request if ENOENT - + [core] buffer large responses to tempfiles (fixes #758, fixes #760, fixes #933, fixes #1387, #1283, fixes #2083) - + [core] stream response to client (#949) - + [TLS] release openssl buffers as used (fixes #1265, fixes #1283, #881) - + [config] config options to stream request/response (#949, #376) - + [core] option to stream request body to backend (fixes #376) - + separate routines for reading output from backends - + [core] option to stream response body to client (fixes #949, #760, #1283, #1387) - + drain backend socket/pipe bufs upon FDEVENT_HUP - + http_response_backend_error() - + remove excess calls to joblist_append() - + defer choosing "Transfer-Encoding: chunked" - + asynchronous, bidirectional streaming options - + fix errors detected by Coverity Scan - + [build] update Makefile.am EXTRA_DIST w/ new files - + chunkqueue_append_chunkqueue() - + fix errors detected by Coverity Scan - + [cygwin] fix mod_proxy and mod_fastcgi ioctl use - + use con->conf.server_tag in modules - + [mod_webdav] remove excess SQL param to UNLOCK - + [doc] NEWS - + graceful shutdown without unnecessary 1 sec delay - + fix error handling for portability (NetBSD) - + [core] disable Nagle algorithm (TCP_NODELAY) - + [core] add declarations to fdevent.h (#2373) - + [build] add $(ATTR_LIB) to liblightcomp_la_LIBADD - + [cygwin] minor: fix compiler warning - + [tests] remove dependency on CGI.pm - + [core] fix s6_addr type-punned compiler warning - + [TLS] fix return value checks during cert init - + [core] fix server.max-request-size to be precise (fixes #2131) - + [mod_webdav] fix proppatch mem leak, other fixes (#fixes 1334, #fixes 2000) - + [autobuild] CMake check for struct tm tm_gmtoff (fixes #2014) - + [core] remove assert in fdevent_unregister() - + [mod_uploadprogress] fix mem leak (#1858) - + [core] make server.max-request-size scopeable (fixes #1901) - + [mod_fastcgi,mod_scgi] check for spawning on same unix socket (#319) - + [mod_fastcgi,mod_scgi] check for spawning on same unix socket (#319) - + fix gcc 6.1.1 compiler warn misleading-indentation - + [mod_accesslog] %a %A %C %D %k %{}t %{}T (fixes #1145, fixes #1415, fixes #2081) - + [mod_access] new directive url.access-allow (fixes #1421) - + [core] fdevent_libev: update use of ev_timer - + [core] fdevent_libev: workaround compiler warning - + [tests] remove some tests duplicated in mod-cgi.t - + [mod_cgi] handle local redirect response (fixes #2108) - + update lighttpd -h - + [doc] add self to AUTHORS (discussed w/ stbuehler) - + [doc] NEWS - - -- Jenkins (autobuilder) <[email protected]> Sat, 16 Jul 2016 11:54:52 +0000 - -lighttpd (1.4.39-0.99) unstable; urgency=medium - - * Non-maintainer upload. - * Prepare package for 1.4.40 release - * Add libmemcached-dev build dependency, fix configure flags - * Bump standard to 3.9.8 - -- Stefan Bühler <[email protected]> Sat, 16 Jul 2016 13:50:52 +0200 + -- Jenkins (autobuilder) <[email protected]> Sun, 22 Oct 2017 20:38:23 +0000 -lighttpd (1.4.39-0.1) unstable; urgency=low +lighttpd (1.4.46-0.1) unstable; urgency=medium - * Non-maintainer upload. - * new snapshot 1.4.39 - + -next is 1.4.38 - + fix packdist.sh output links - + [stat-cache] fix handling of collisions, might have returned wrong data (fixes #2669) - + [core] allocate at least 4k buffer for incoming data - + [core] fix search for header end if split across chunks (fixes #2670) - + [core] check configparserAlloc() result with force_assert - + [mod_auth] implement and use safe_memclear, using memset_s or explicit_bzero if available - + [core] don't buffer request bodies smaller than 64k on disk - + add force_assert for many allocations and function results - + [mod_secdownload] use a hopefully constant time comparison to check hash (fixes #2679) - + [config] check config option scope; warn if server option is given in conditional - + [core] revert increase of temp file size back to 1MB, provide a configure option "server.upload-temp-file-size" instead (fixes #2680) - + [core] add '~' to safe characters in ENCODING_REL_URI/ENCODING_REL_URI_PART encoding - + [core] encode path with ENCODING_REL_URI in redirect to directory (fixes #2661, thx gstrauss) - + [core] refactor base64 functions into separate file - + [mod_secdownload] add required algorithm option; old behaviour available as "md5", new options "hmac-sha1" and "hmac-sha256" - + [autobuild] fix missing header in tar ball - + mod-auth.t: no crypt md5 for darwin - + [tests] test apr-md5 in mod-auth.t - + [tests] do not half-close socket before having received the response (fixes #2688) - + [mod_fastcgi/mod_scgi] zero sockaddr structs before use (fixes #2691) - + [network] add darwin-sendfile backend (fixes #2687) - + [core] show correct crypt support result (fixes #2690) - + - next ist 1.4.39 - + [core] fix memset_s call (fixes #2698) - + [chunk] fix use after free / double free (fixes #2700) - + [scons] fix fullstatic build - - -- Jenkins (autobuilder) <[email protected]> Sat, 02 Jan 2016 13:30:53 +0000 - -lighttpd (1.4.37-0.1) unstable; urgency=low + [ Stefan Bühler ] * Non-maintainer upload. - * new snapshot 1.4.37 - + - next is 1.4.37 - + [mod_proxy] remove debug log line from error log (fixes #2659) - + [mod_dirlisting] fix dir-listing.set-footer not showing - + fix out-of-filedescriptors when uploading "large" files (fixes #2660, thx rmilecki) - + increase upload temporary chunk file size from 1MB to 16MB - + fix undefined integer shift - + rewrite network (write) backends - + [cmake] lowercase commands, whitespace cleanup, remove clutter in else(...), endif(...), endforeach(...) - + [cmake] cleanup cache variables if features get deactivated - + fix some unchecked return value warnings - + maintain cq->bytes_in in chunk API; keep bytes_out/bytes_in synced - + [cmake] don't put date into config.h (not used anyway), only unset local vars for disabled features instead of clearing cache - + [cmake] fix FreeBSD linker bug - + [tests] search for perl in PATH instead of /usr/bin; whitespace + test config cleanups - + [kqueue] fix kevent call - + [tests] fix warning about newline in filename - + [autoconf] define HAVE_CRYPT when crypt() is present - + [bsd xattr] fix compile break with BSD extended attributes in stat_cache - + [mod_dirlisting] remove sys/syslimits.h; base.h already includes limits.h - + small README for FreeBSD build setup - + [build] put --as-needed into linker flags instead of cflags - + [mod_cgi] rewrite mmap and generic (post body) send error handling - + [mmap] fix mmap alignment - + [plugins] when modules are linked statically still only load the modules given in the config - + [scons] various improvements - + [mmap] handle SIGBUS in network; those get triggered if the file gets smaller during reading - + [scons] fix crypt() detection, other improvements - + [scons] fix build - + fix some warnings found by coverity ("leak" in setup phase, not catching too long unix socket paths in mod_proxy) - + packdist.sh: use fakeroot for make dist to have root owned files in tar + * New upstream version 1.4.46. + - Drop spelling.patch (applied upstream) + * New packages for new modules mod_vhost_{dbi,ldap,mysql,pgsql} + * Bump Standards-Version to 4.1.1 + * Build-Dependencies: + - recent debhelper versions replace dh-systemd + - libssl1.0-dev alternative not needed + - add libmysqlclient-dev alternatives (oldstable doesn't have + default-libmysqlclient-dev) + * Change some links to use https + + [ Michael Gilbert ] + * Suggest php-cgi since php5-cgi has been removed from the archive + (closes: #859927). + + -- Stefan Bühler <[email protected]> Sun, 22 Oct 2017 10:15:54 +0200 + +lighttpd (1.4.45-1) unstable; urgency=medium + + * New upstream version 1.4.45. + - Drop kfreebsd-disable-test.patch (upstream says its fixed). + * Fix upstream spelling errors. + * Fix cgi-bin path on start page (closes: #763618) + * Remove automatically generated files from the upstream tarball again. + * Suggest the service command instead of /etc/init.d for restarting services + (closes: #762663). + + -- Michael Gilbert <[email protected]> Sat, 14 Jan 2017 21:07:19 +0000 + +lighttpd (1.4.44-1) unstable; urgency=medium + + * New upstream version 1.4.44 + * debian/copyright: make lintian happy + * debian/control: add libssl1.0-dev as alternative for libssl-dev + + -- Krzysztof Krzyżaniak (eloy) <[email protected]> Mon, 09 Jan 2017 17:43:47 +0100 + +lighttpd (1.4.43+git20161216-1) unstable; urgency=medium + + * New upstream snapshot (closes: #846917). + * Remove unneeded perl dependencies. + * Update debian/copyright to format 1.0. + * Ship NEWS file as upstream's changelog. + * Remove systemd dependency (closes: #846299). + * Suggest php5-cgi instead of recommending it. + * Update watch file to look for upstream's xz tarball. + * Fix incorrect bug number in previous changelog entry. + * Make a mod_rewrite conf file available (closes: #751957). + * Point to /var/www/html from the placeholder page (closes: #808921). + * Add new packages for LDAP, GSSAPI, MySQL, and GeoIP modules. + - Thanks to Stefan Bühler. + * Fix build hardening flags. + - Thanks to Stefan Bühler. + + -- Michael Gilbert <[email protected]> Mon, 19 Dec 2016 00:04:25 +0000 + +lighttpd (1.4.43-1) unstable; urgency=medium + + * New upstream release (closes: #841732). + - Fixes CVE-2016-1000212 (closes: #832571). + - Adds support for openssl 1.1.0 (closes: #828421). + * Update standards version. + * Fix lsb-base lintian error. + * Add Glenn Strauss signing key. + * Use upstream's systemd service file. + * Recommend php5-cgi (closes: #774644). + * Suggest lighttpd-doc (closes: #806523). + * Use default-libmysqlclient-dev build dependency. - -- Jenkins (autobuilder) <[email protected]> Sun, 30 Aug 2015 12:13:18 +0000 + -- Michael Gilbert <[email protected]> Sat, 26 Nov 2016 05:09:35 +0000 -lighttpd (1.4.36-0.1) unstable; urgency=low +lighttpd (1.4.39-1) unstable; urgency=medium - * Non-maintainer upload. - * new snapshot 1.4.36 - + [configfile] fix reading uninitialized variable (found by Willian B.) - + [dist] add dist-xz, remove dist-bzip2, allow ~rc appendix in packdist.sh + * New upstream release. - -- Jenkins (autobuilder) <[email protected]> Sun, 26 Jul 2015 10:37:09 +0000 + -- Michael Gilbert <[email protected]> Sun, 03 Jan 2016 03:59:55 +0000 -lighttpd (1.4.36~rc1-0.2) unstable; urgency=low +lighttpd (1.4.37-1) unstable; urgency=medium - * Non-maintainer upload. - * Package rebuild + * New upstream release. + - Log file injection issue CVE-2015-3200 fixed (closes: #787132). + * Add a debian/clean file. + * Drop upstreamed patches. + * Add upstream signing key. + * Update standards version. + * Apply the non-maintainer upload. - -- Jenkins (autobuilder) <[email protected]> Sat, 11 Jul 2015 13:27:22 +0000 + -- Michael Gilbert <[email protected]> Sun, 06 Sep 2015 05:37:20 +0000 -lighttpd (1.4.36~rc1-0.1) unstable; urgency=low +lighttpd (1.4.35-4.1) unstable; urgency=medium * Non-maintainer upload. - * new snapshot 1.4.36~rc1 - + - next is 1.4.36 - + use keep-alive timeout while waiting for HTTP headers; use always the read timeout while waiting for the HTTP body - + fix bad shift in conditional netmask ".../0" handling - + add more mime types and a script to generate mime.conf (fxies #2579) - + fix typo in NEWS entry for #2579 - + add support for (Free)BSD extended attributes - + [build] use fortify flags with "extra-warnings" - + [mod_dirlisting,mod_redirect,mod_rewrite] abort config parsing if pcre-compile fails or isn't available - + [ssl] disable SSL3.0 by default - + Fixed typo found by openSUSE user (boo# 907709) - + add NEWS entry for previous commit - + [network] fix compile break in calculation of sockaddr_un size if SUN_LEN is not defined (fixes #2609) - + [connections] fix bug in connection state handling - + print backtrace in assert logging with libunwind - + fix buffer, chunk and http_chunk API - + Remove chunkqueue_get_{append,prepend}* API - + Remove buffer_prepare_copy() and buffer_prepare_append() - + [tests] improve valgrind and strace TRACEME, disable condition logging in normal configs - + Use buffer API to read and modify "used" member - + rename buffer_append_long_hex to buffer_append_uint_hex - + [buffer] constify some parameters - + [bitset] unused -> remove - + remove unused stuff from server.h - + [crc32] fix method signature (const pointer) - + [tests] fix undefined index warning in sendfile.php - + [mod_auth] use crypt_r instead of crypt if available - + fix error message for T_CONFIG_ARRAY config values if an entry value is not a string - + fix segfaults in many plugins if they failed configuration - + escape all strings for logging (fixes #2646 log file injection, reported by Jaanus Kääp) - + add some until now missing files to dist tarball - + minor spelling fixes - + fix hex escape in accesslog (fixes #2559) - + show extforward re-run warning only with debug.log-request-handling (fixes #2561) - + parse If-None-Match for ETag validation (fixes #2578) - + check pointer before usage in new etag compare - + fix memory leak in mod_status when no counters are set (found by coverity) - + #ifdef all parts belonging to the connection-state debugging - + [mod_magnet] fix segfault when accessing not existing lighty.req_env[] entry (found by coverity) - + fix segfault when temp file for upload couldn't be created (found by coverity) - + check fcgi_env_add return value (found by coverity) - + mime.conf: add some new mime types, remove .dat, .sha1, .md5, update .vcf - + [mod_proxy] add unix domain socket support (fixes #2653) + * Fix "FTBFS with perl 5.22: test failures (CGI.pm)": + Add build dependency on libcgi-pm-perl. + CGI.pm was deprecated in Perl 5.19.x and removed in 5.21.x which makes the + explicit build dependency necessary. + (Closes: #789856) - -- Jenkins (autobuilder) <[email protected]> Sat, 11 Jul 2015 13:14:12 +0000 + -- gregor herrmann <[email protected]> Thu, 27 Aug 2015 18:29:21 +0200 lighttpd (1.4.35-4) unstable; urgency=medium @@ -782,7 +320,7 @@ to change your configuration to mitigate effects of the attack. See the corresponding NEWS file for details. + Count SSL renegotiations to prevent client renegotiations - * Urgency set to medium due to security updates. + * Urgency set to medium due to security updates. * Adapt to dpkg 1.16.1 API changes regarding build flags. This enables hardening build flags. This means, lighttpd is now being built with -fstack-protector and other security related build flags. @@ -824,8 +362,8 @@ [ Krzysztof Krzyżaniak (eloy) ] * Add Arno Töll to Uploaders - - [ Arno Töll ] + + [ Arno Töll ] * Fix "leaves dangling alternatives on upgrade" add preinst script which removes the dangling symlink (Closes: #614716) * Fix "/etc/lighttpd/conf-available/15-fastcgi-php.conf: fastcgi-php @@ -843,7 +381,7 @@ * Updated debian/control and debian/copyright files * fix for debhelper-overrides-need-versioned-build-depends (>= 7.0.50~) * debian/compat: increased to 8 - + [ Olaf van der Spek] * Don't fail install if server fails to start (closes: #383425) * Fix index-file.names typo (closes: #609890) @@ -855,7 +393,7 @@ [ Olaf van der Spek ] * Use relative instead of absolute links for conf-enabled (closes: #541645) * Fix /doc/ for IPv6 (closes: #512583) - + [ Krzysztof Krzyżaniak (eloy) ] * Added patch patches/silence-errors.diff (closes: #601177) @@ -881,19 +419,19 @@ * Switch to dpkg-source 3.0 (quilt) format * debian/control: + removed Franz Pletz from Uploaders, he's MIA (closes: #579366) - + change dependency from libmysqlclient15-dev to more general + + change dependency from libmysqlclient15-dev to more general libmysqlclient-dev [ Olaf van der Spek ] * take conf dir as an optional parameter (closes: 489854) - * don't try to make /var/run/lighttpd when invoked with status + * don't try to make /var/run/lighttpd when invoked with status (closes: 538662) * split FastCGI PHP conf from FastCGI conf (closes: 515699) * reduce max-procs from 2 to 1 (closes: 456200) * move debian doc handling into it's own file * set default vhost dir to /srv/<host>/htdocs (closes: 471054) * use delaycompress instead of copytruncate for logrotate (closes: 563626) - * don't wait for old process to stop before starting new one for reload + * don't wait for old process to stop before starting new one for reload (closes: 504315) * use reopen-logs for logrotate (closes: 504319) * add no-www.conf (for use with evhost and simple-vhost, closes: 471055) @@ -921,7 +459,7 @@ * New upstream release (closes: #558045) * debian/watch: updated * debian/control: Section field changed to web - + -- Krzysztof Krzyżaniak (eloy) <[email protected]> Mon, 30 Nov 2009 14:03:15 +0100 lighttpd (1.4.24-1) unstable; urgency=low @@ -935,7 +473,7 @@ (Jeremy Lal <[email protected]>) * debian/init.d: force-reload moved to reload section (closes: #538661) (Peter Eisentraut <[email protected]>) - + -- Krzysztof Krzyżaniak (eloy) <[email protected]> Fri, 30 Oct 2009 17:37:29 +0100 lighttpd (1.4.23-3) unstable; urgency=low @@ -959,9 +497,9 @@ * Update Standards-Version to 3.8.2 without changes * Remove cdbs, patchutils from Build-Depends, debian/rules uses debhelper 7 scripts - * lighttpd.logrotate apply patch (closes: #535523) + * lighttpd.logrotate apply patch (closes: #535523) from Ubuntu (Daniel Hahler, https://launchpad.net/bugs/393792) - + -- Krzysztof Krzyżaniak (eloy) <[email protected]> Thu, 09 Jul 2009 11:24:16 +0200 lighttpd (1.4.22-1) unstable; urgency=low @@ -971,7 +509,7 @@ debhelper dependency updated to 7, utfize my name, satisfy lintian * Remove all patches, all fixed upstream but rewrite_redirect_decode_url Do NOT use rewrite/redirect to protect specific urls. - + -- Krzysztof Krzyżaniak (eloy) <[email protected]> Wed, 18 Mar 2009 11:19:55 +0100 lighttpd (1.4.19-5) unstable; urgency=high @@ -1228,7 +766,7 @@ lighttpd (1.4.15-1) unstable; urgency=low * New upstream release (closes: #419131) - * 01_mod_fastcgi_missing_cleanup.dpatch is now in upstream so it's removed from + * 01_mod_fastcgi_missing_cleanup.dpatch is now in upstream so it's removed from patches * 04_pidfile_bugfix.dpatch is now in upstream so it's removed from patches @@ -1239,7 +777,7 @@ * 03_ldap_leak_bugfix.dpatch added from [email protected] (Yann Rouillard) (closes: #413917) * Lowered priority of index.lighttpd.html (closes: #397492) - * We don't need now check md5 sum of index.html since we provide our own + * We don't need now check md5 sum of index.html since we provide our own index.lighttpd.html (closes: #407794) * 04_pidfile_bugfix.dpatch by Chris Webb <[email protected]> added - some fixes with graceful restart @@ -1248,7 +786,7 @@ lighttpd (1.4.13-9) unstable; urgency=low - * debian/lighttpd.default - removed, it is not ready yet. We'll back after + * debian/lighttpd.default - removed, it is not ready yet. We'll back after etch release (closes: #406021) * debian/index.html.md5 - fixed path to file (full path to index.html) @@ -1300,7 +838,7 @@ + perl added to dependencies (closes: #396629) * debian/conf-available/10-fastcgi.conf: + /usr/bin/php4-cgi changed to /usr/bin/php-cgi (closes: #397142) - * debian/lighttpd.postinst: fix permission of /var/log/lighttpd + * debian/lighttpd.postinst: fix permission of /var/log/lighttpd (closes: #398834) * debian/lighty-enable-mod - fixed bug with undefined values (closes: #397493) @@ -1345,7 +883,7 @@ * New upstream release (closes: #390877) (closes: #389911) * Compiled with --with-attr param (closes: #389712) - * dropped 01-lua5.1.dpatch, issue fixed by upstream + * dropped 01-lua5.1.dpatch, issue fixed by upstream -- Krzysztof Krzyzaniak (eloy) <[email protected]> Thu, 5 Oct 2006 10:08:19 +0200 @@ -1355,7 +893,7 @@ * fixes in debian/lighttpd.install (closes: #377802) * mod_cml is deprecated from now on and it will be removed in 1.5.0 mod_magnet provides the same functionality and more with a - cleaner syntax and in a more generic form + cleaner syntax and in a more generic form * added separate module for mod_magnet (closes: #389578) * changed dependency from lua-5.0 to lua-5.1 * added patch patches/01-lua5.1.dpatch @@ -1385,10 +923,10 @@ + proper configuration for localhost as well (again Bug#345554) * debian/lighttpd.conf: + server.bind commented out as in default configuration (closes: #380267) - * debian/patches/02_ssl_fix.dpatch - added fix for ssl connection with POST - request (http://trac.lighttpd.net/trac/ticket/607), thanks to + * debian/patches/02_ssl_fix.dpatch - added fix for ssl connection with POST + request (http://trac.lighttpd.net/trac/ticket/607), thanks to RISKO Gergely <[email protected]> (closes: #381455) - * debian/lighttpd.logrotate - some values changes (now rotate weekly + * debian/lighttpd.logrotate - some values changes (now rotate weekly and keep 12 logfiles) -- Krzysztof Krzyzaniak (eloy) <[email protected]> Mon, 28 Aug 2006 13:06:25 +0200 @@ -1404,9 +942,9 @@ * debian/control: - Recommends: Changed to alternative: php4-cgi | php5-cgi (closes: #368215) - * include-conf-enabled.pl script changed according to patch from + * include-conf-enabled.pl script changed according to patch from Tobias Gruetzmacher <[email protected]> (closes: #368352) - * debian/lighttpd.conf: removed global for local aliases (/images/, /doc/) + * debian/lighttpd.conf: removed global for local aliases (/images/, /doc/) (closes: #366801) -- Krzysztof Krzyzaniak (eloy) <[email protected]> Tue, 23 May 2006 16:48:36 +0200 @@ -1415,7 +953,7 @@ * debian/init.d: - --oknodo added to section "stop" to close finally #35979 - - --retry 30 added to section "reload", to prevents problems with + - --retry 30 added to section "reload", to prevents problems with logrotating (closes: #366366) * debian/control: Standards-Version: increased to 3.7.2 without additional changes @@ -1432,8 +970,8 @@ [ Torsten Marek ] * Change my email address to [email protected] - * Remove --background from the start action, since it - breaks the error checking of start-stop-daemon. + * Remove --background from the start action, since it + breaks the error checking of start-stop-daemon. The behaviour described in #355865 is not reproducable any more. * make reload action in initscript more well-behaved @@ -1457,7 +995,7 @@ lighttpd (1.4.11-1) unstable; urgency=low * New upstream release (closes: #356496) - * init.d script - added --background to "start" (thanks goes to + * init.d script - added --background to "start" (thanks goes to Marcello Nuccio <[email protected]>) (closes: #355865) -- Krzysztof Krzyzaniak (eloy) <[email protected]> Fri, 10 Mar 2006 09:51:10 +0100 @@ -1480,7 +1018,7 @@ * debian/lighttpd.install - install mod_evasive into lighttpd package * debian/control - own packages for mod_trigger_b4_dl and mod_cml * debian/control - small fixes - * debian/conf-available/10-ssi.conf - comment out link to web documentation + * debian/conf-available/10-ssi.conf - comment out link to web documentation -- Torsten Marek <[email protected]> Mon, 6 Mar 2006 12:07:29 +0100 @@ -1501,8 +1039,8 @@ * debian/control - libmysqlclient14-dev added as alternative (will be easier for backports.org) - * lighty-enable-mod script fixed - files with dash were skipped, thanks - to Silvester Zabala for patch (closes: #352577) + * lighty-enable-mod script fixed - files with dash were skipped, thanks + to Silvester Zabala for patch (closes: #352577) * install doc/lighttpd.conf as example (closes: #344961) -- Krzysztof Krzyzaniak (eloy) <[email protected]> Mon, 13 Feb 2006 12:58:54 +0100 @@ -1530,11 +1068,11 @@ lighttpd (1.4.9-3) unstable; urgency=low [ Torsten Marek ] - * Added some configuration examples from upstream sample + * Added some configuration examples from upstream sample configuration - * Implement "reload" init.d action with graceful restart, + * Implement "reload" init.d action with graceful restart, taken from http://trac.lighttpd.net/trac/ticket/267 (Closes: #346038) - * ssi, auth, fastcgi, proxy and simple-vhost are now in separte + * ssi, auth, fastcgi, proxy and simple-vhost are now in separte config files * Put path to plugin documentation into every config snippet * Build against libmysqlclient15 @@ -1545,7 +1083,7 @@ [ Krzysztof Krzyzaniak (eloy) ] * mod_alias enabled by default - removed conf-avaiable/00-alias.conf - * Added handling of http://localhost/doc/ & http://localhost/images/ + * Added handling of http://localhost/doc/ & http://localhost/images/ (closes: #348823) -- Krzysztof Krzyzaniak (eloy) <[email protected]> Thu, 19 Jan 2006 12:39:04 +0100 @@ -1574,7 +1112,7 @@ * New configuration layout (closes: #345554) (closes: #344959), read /etc/lighttpd/conf-available/README - - conf-available directory for all templates + - conf-available directory for all templates - conf-enabled directory for enabled modules -- Krzysztof Krzyzaniak (eloy) <[email protected]> Mon, 9 Jan 2006 13:49:34 +0100 diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/conf-available/10-rewrite.conf new/debian/conf-available/10-rewrite.conf --- old/debian/conf-available/10-rewrite.conf 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/conf-available/10-rewrite.conf 2017-01-14 22:07:19.000000000 +0100 @@ -0,0 +1,4 @@ +# /usr/share/doc/lighttpd/rewrite.txt +# http://redmine.lighttpd.net/projects/lighttpd/wiki/Docs_ConfigurationOptions#mod_rewrite-rewriting + +server.modules += ( "mod_rewrite" ) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/control new/debian/control --- old/debian/control 2016-12-23 11:31:09.000000000 +0100 +++ new/debian/control 2017-11-12 13:37:08.000000000 +0100 @@ -6,11 +6,11 @@ Olaf van der Spek <[email protected]>, Arno Töll <[email protected]>, Michael Gilbert <[email protected]> -Homepage: http://lighttpd.net/ +Homepage: https://lighttpd.net/ Build-Depends: dpkg-dev (>= 1.16.1~), debhelper (>= 9.20130624~), - dh-systemd (>= 1.3), + debhelper (>= 9.20160709) | dh-systemd (>= 1.3), dh-autoreconf, mime-support, libssl-dev, @@ -18,6 +18,8 @@ libbz2-dev, libattr1-dev, libpcre3-dev, + libdbi-dev, + libpq-dev, default-libmysqlclient-dev | libmysqlclient-dev, libfam-dev, libldap2-dev, @@ -31,11 +33,12 @@ libsqlite3-dev, libxml2-dev, libkrb5-dev, + libsasl2-dev, perl, libcgi-pm-perl, -Vcs-Git: git://anonscm.debian.org/pkg-lighttpd/lighttpd.git -Vcs-Browser: http://anonscm.debian.org/gitweb/?p=pkg-lighttpd/lighttpd.git -Standards-Version: 3.9.8 +Vcs-Git: https://anonscm.debian.org/git/pkg-lighttpd/lighttpd.git +Vcs-Browser: https://anonscm.debian.org/gitweb/?p=pkg-lighttpd/lighttpd.git +Standards-Version: 4.1.1 Package: lighttpd Architecture: any @@ -52,7 +55,7 @@ Suggests: openssl, rrdtool, - php5-cgi, + php-cgi, apache2-utils, lighttpd-doc, Description: fast webserver with minimal memory footprint @@ -94,6 +97,54 @@ hosts into a MySQL table instead of including it in the lighttpd configuration file. +Package: lighttpd-mod-vhostdb-dbi +Architecture: any +Depends: + ${misc:Depends}, + ${shlibs:Depends}, + lighttpd (= ${binary:Version}), +Description: DBI-based virtual host configuration for lighttpd + This package contains the vhostdb_dbi module for lighttpd. With + this module, it is possible to write the configuration for virtual + hosts into a database table instead of including it in the lighttpd + configuration file. + +Package: lighttpd-mod-vhostdb-ldap +Architecture: any +Depends: + ${misc:Depends}, + ${shlibs:Depends}, + lighttpd (= ${binary:Version}), +Description: LDAP-based virtual host configuration for lighttpd + This package contains the vhostdb_ldap module for lighttpd. With + this module, it is possible to write the configuration for virtual + hosts into an LDAP database instead of including it in the lighttpd + configuration file. + +Package: lighttpd-mod-vhostdb-mysql +Architecture: any +Depends: + ${misc:Depends}, + ${shlibs:Depends}, + lighttpd (= ${binary:Version}), +Description: MySQL-based virtual host configuration for lighttpd + This package contains the vhostdb_mysql module for lighttpd. With + this module, it is possible to write the configuration for virtual + hosts into a MySQL table instead of including it in the lighttpd + configuration file. + +Package: lighttpd-mod-vhostdb-pgsql +Architecture: any +Depends: + ${misc:Depends}, + ${shlibs:Depends}, + lighttpd (= ${binary:Version}), +Description: PostgreSQL-based virtual host configuration for lighttpd + This package contains the vhostdb_pgsql module for lighttpd. With + this module, it is possible to write the configuration for virtual + hosts into a PostgreSQL table instead of including it in the lighttpd + configuration file. + Package: lighttpd-mod-trigger-b4-dl Architecture: any Depends: @@ -118,10 +169,9 @@ Description: cache meta language module for lighttpd With the cache meta language, it is possible to describe to the dependencies of a cached file to its source files/scripts. For the - cache files, the scripting language LUA is used. + cache files, the scripting language Lua is used. . - THIS MODULE IS OBSOLETED AND WILL BE REMOVED IN LIGHTTPD 2.0. - USE mod_magnet INSTEAD. + THIS MODULE IS OBSOLETED, USE mod_magnet INSTEAD. Package: lighttpd-mod-magnet Architecture: any @@ -187,6 +237,16 @@ this module, it is possible to perform authentication using a MySQL table. +Package: lighttpd-mod-authn-sasl +Architecture: any +Depends: + ${misc:Depends}, + ${shlibs:Depends}, + lighttpd (= ${binary:Version}), +Description: SASL authentication for lighttpd + This package contains the authn_sasl module for lighttpd. With + this module, it is possible to perform authentication using SASL. + Package: lighttpd-mod-geoip Architecture: any Depends: diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/copyright new/debian/copyright --- old/debian/copyright 2016-12-19 01:04:25.000000000 +0100 +++ new/debian/copyright 2017-10-22 09:59:52.000000000 +0200 @@ -1,18 +1,35 @@ -Format: http://www.debian.org/doc/packaging-manuals/copyright-format/1.0 +Format: https://www.debian.org/doc/packaging-manuals/copyright-format/1.0 Upstream-Name: lighttpd Files-Excluded: + aclocal.m4 + ar-lib autogen.sh + compile + config.guess + config.h.in + config.sub config.py-sample + configure + depcomp + install-sh + ltmain.sh + m4 + missing + *Makefile.in + src/configparser.c + src/configparser.h + src/mod_ssi_exprparser.c + src/mod_ssi_exprparser.h Files: * -Author: Copyright (c) 2004, Jan Kneschke, incremental +Copyright: Copyright (c) 2004, Jan Kneschke, incremental License: BSD-3-clause Files: src/fastcgi.h Copyright: Copyright (c) 1995-1996 Open Market, Inc License: Open-Market -Files: src/md5.h, src/md5.c +Files: src/md5.h src/md5.c Copyright: Copyright (c) 1991-2, RSA Data Security , Inc. All rights reserved. License: RSA diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/index.html new/debian/index.html --- old/debian/index.html 2016-12-19 01:04:25.000000000 +0100 +++ new/debian/index.html 2017-01-14 22:07:19.000000000 +0100 @@ -29,7 +29,7 @@ <ul> <li>Configuration files can be found in <span class="tt">/etc/lighttpd</span>. Please read <span class="tt">/etc/lighttpd/conf-available/README</span> file.</li> <li>The DocumentRoot, which is the directory under which all your HTML files should exist, is set to <span class="tt">/var/www/html</span>.</li> - <li>CGI scripts are looked for in <span class="tt">/usr/lib/cgi-bin</span>, which is where Debian packages will place their scripts. You can enable cgi module by using command <span class="bold tt">"lighty-enable-mod cgi"</span>.</li> + <li>CGI scripts are looked for in <span class="tt">/usr/www/cgi-bin</span>, which is where Debian packages will place their scripts. You can enable cgi module by using command <span class="bold tt">"lighty-enable-mod cgi"</span>.</li> <li>Log files are placed in <span class="tt">/var/log/lighttpd</span>, and will be rotated weekly. The frequency of rotation can be easily changed by editing <span class="tt">/etc/logrotate.d/lighttpd</span>.</li> <li>The default directory index is <span class="tt">index.html</span>, meaning that requests for a directory <span class="tt">/foo/bar/</span> will give the contents of the file /var/www/foo/bar/index.html if it exists (assuming that <span class="tt">/var/www</span> is your DocumentRoot).</li> <li>You can enable user directories by using command <span class="bold tt">"lighty-enable-mod userdir"</span></li> diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-doc.docs new/debian/lighttpd-doc.docs --- old/debian/lighttpd-doc.docs 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-doc.docs 2017-11-17 10:59:08.746606939 +0100 @@ -0,0 +1 @@ +symbolic link to lighttpd.docs diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-mod-authn-gssapi.docs new/debian/lighttpd-mod-authn-gssapi.docs --- old/debian/lighttpd-mod-authn-gssapi.docs 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-mod-authn-gssapi.docs 2017-11-17 10:59:08.754606646 +0100 @@ -0,0 +1 @@ +symbolic link to lighttpd.docs diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-mod-authn-ldap.docs new/debian/lighttpd-mod-authn-ldap.docs --- old/debian/lighttpd-mod-authn-ldap.docs 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-mod-authn-ldap.docs 2017-11-17 10:59:08.770606060 +0100 @@ -0,0 +1 @@ +symbolic link to lighttpd.docs diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-mod-authn-mysql.docs new/debian/lighttpd-mod-authn-mysql.docs --- old/debian/lighttpd-mod-authn-mysql.docs 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-mod-authn-mysql.docs 2017-11-17 10:59:08.790605328 +0100 @@ -0,0 +1 @@ +symbolic link to lighttpd.docs diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-mod-authn-sasl.docs new/debian/lighttpd-mod-authn-sasl.docs --- old/debian/lighttpd-mod-authn-sasl.docs 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-mod-authn-sasl.docs 2017-11-17 10:59:08.730607524 +0100 @@ -0,0 +1 @@ +symbolic link to lighttpd.docs diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-mod-authn-sasl.install new/debian/lighttpd-mod-authn-sasl.install --- old/debian/lighttpd-mod-authn-sasl.install 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-mod-authn-sasl.install 2017-11-12 11:14:27.000000000 +0100 @@ -0,0 +1 @@ +debian/tmp/usr/lib/lighttpd/mod_authn_sasl.so diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-mod-cml.docs new/debian/lighttpd-mod-cml.docs --- old/debian/lighttpd-mod-cml.docs 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-mod-cml.docs 2017-11-17 10:59:08.778605767 +0100 @@ -0,0 +1 @@ +symbolic link to lighttpd.docs diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-mod-geoip.docs new/debian/lighttpd-mod-geoip.docs --- old/debian/lighttpd-mod-geoip.docs 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-mod-geoip.docs 2017-11-17 10:59:08.766606207 +0100 @@ -0,0 +1 @@ +symbolic link to lighttpd.docs diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-mod-magnet.docs new/debian/lighttpd-mod-magnet.docs --- old/debian/lighttpd-mod-magnet.docs 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-mod-magnet.docs 2017-11-17 10:59:08.738607231 +0100 @@ -0,0 +1 @@ +symbolic link to lighttpd.docs diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-mod-mysql-vhost.docs new/debian/lighttpd-mod-mysql-vhost.docs --- old/debian/lighttpd-mod-mysql-vhost.docs 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-mod-mysql-vhost.docs 2017-11-17 10:59:08.722607817 +0100 @@ -0,0 +1 @@ +symbolic link to lighttpd.docs diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-mod-trigger-b4-dl.docs new/debian/lighttpd-mod-trigger-b4-dl.docs --- old/debian/lighttpd-mod-trigger-b4-dl.docs 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-mod-trigger-b4-dl.docs 2017-11-17 10:59:08.742607085 +0100 @@ -0,0 +1 @@ +symbolic link to lighttpd.docs diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-mod-vhostdb-dbi.docs new/debian/lighttpd-mod-vhostdb-dbi.docs --- old/debian/lighttpd-mod-vhostdb-dbi.docs 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-mod-vhostdb-dbi.docs 2017-11-17 10:59:08.750606792 +0100 @@ -0,0 +1 @@ +symbolic link to lighttpd.docs diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-mod-vhostdb-dbi.install new/debian/lighttpd-mod-vhostdb-dbi.install --- old/debian/lighttpd-mod-vhostdb-dbi.install 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-mod-vhostdb-dbi.install 2017-10-17 17:56:12.000000000 +0200 @@ -0,0 +1 @@ +debian/tmp/usr/lib/lighttpd/mod_vhostdb_dbi.so diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-mod-vhostdb-ldap.docs new/debian/lighttpd-mod-vhostdb-ldap.docs --- old/debian/lighttpd-mod-vhostdb-ldap.docs 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-mod-vhostdb-ldap.docs 2017-11-17 10:59:08.726607670 +0100 @@ -0,0 +1 @@ +symbolic link to lighttpd.docs diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-mod-vhostdb-ldap.install new/debian/lighttpd-mod-vhostdb-ldap.install --- old/debian/lighttpd-mod-vhostdb-ldap.install 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-mod-vhostdb-ldap.install 2017-06-08 16:28:36.000000000 +0200 @@ -0,0 +1 @@ +debian/tmp/usr/lib/lighttpd/mod_vhostdb_ldap.so diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-mod-vhostdb-mysql.docs new/debian/lighttpd-mod-vhostdb-mysql.docs --- old/debian/lighttpd-mod-vhostdb-mysql.docs 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-mod-vhostdb-mysql.docs 2017-11-17 10:59:08.782605621 +0100 @@ -0,0 +1 @@ +symbolic link to lighttpd.docs diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-mod-vhostdb-mysql.install new/debian/lighttpd-mod-vhostdb-mysql.install --- old/debian/lighttpd-mod-vhostdb-mysql.install 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-mod-vhostdb-mysql.install 2017-06-08 16:28:34.000000000 +0200 @@ -0,0 +1 @@ +debian/tmp/usr/lib/lighttpd/mod_vhostdb_mysql.so diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-mod-vhostdb-pgsql.docs new/debian/lighttpd-mod-vhostdb-pgsql.docs --- old/debian/lighttpd-mod-vhostdb-pgsql.docs 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-mod-vhostdb-pgsql.docs 2017-11-17 10:59:08.762606353 +0100 @@ -0,0 +1 @@ +symbolic link to lighttpd.docs diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-mod-vhostdb-pgsql.install new/debian/lighttpd-mod-vhostdb-pgsql.install --- old/debian/lighttpd-mod-vhostdb-pgsql.install 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-mod-vhostdb-pgsql.install 2017-10-17 17:47:18.000000000 +0200 @@ -0,0 +1 @@ +debian/tmp/usr/lib/lighttpd/mod_vhostdb_pgsql.so diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd-mod-webdav.docs new/debian/lighttpd-mod-webdav.docs --- old/debian/lighttpd-mod-webdav.docs 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/lighttpd-mod-webdav.docs 2017-11-17 10:59:08.734607378 +0100 @@ -0,0 +1 @@ +symbolic link to lighttpd.docs diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd.dirs new/debian/lighttpd.dirs --- old/debian/lighttpd.dirs 2014-08-18 05:39:29.000000000 +0200 +++ new/debian/lighttpd.dirs 2017-10-22 10:15:54.000000000 +0200 @@ -1,8 +1,8 @@ etc/lighttpd/conf-available etc/lighttpd/conf-enabled -usr/lib/cgi-bin usr/sbin var/cache/lighttpd/compress var/cache/lighttpd/uploads var/log/lighttpd var/www/html +var/www/cgi-bin diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd.install new/debian/lighttpd.install --- old/debian/lighttpd.install 2016-12-04 10:31:51.000000000 +0100 +++ new/debian/lighttpd.install 2017-10-17 17:47:31.000000000 +0200 @@ -16,6 +16,7 @@ debian/tmp/usr/lib/lighttpd/mod_fastcgi.so debian/tmp/usr/lib/lighttpd/mod_flv_streaming.so debian/tmp/usr/lib/lighttpd/mod_indexfile.so +debian/tmp/usr/lib/lighttpd/mod_openssl.so debian/tmp/usr/lib/lighttpd/mod_proxy.so debian/tmp/usr/lib/lighttpd/mod_redirect.so debian/tmp/usr/lib/lighttpd/mod_rewrite.so @@ -30,6 +31,8 @@ debian/tmp/usr/lib/lighttpd/mod_uploadprogress.so debian/tmp/usr/lib/lighttpd/mod_userdir.so debian/tmp/usr/lib/lighttpd/mod_usertrack.so +debian/tmp/usr/lib/lighttpd/mod_vhostdb.so +debian/tmp/usr/lib/lighttpd/mod_wstunnel.so debian/lighttpd.conf /etc/lighttpd debian/conf-available/* /etc/lighttpd/conf-available debian/create-mime.assign.pl /usr/share/lighttpd/ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighttpd.lintian-overrides new/debian/lighttpd.lintian-overrides --- old/debian/lighttpd.lintian-overrides 2014-08-18 05:39:29.000000000 +0200 +++ new/debian/lighttpd.lintian-overrides 2017-10-22 10:15:54.000000000 +0200 @@ -7,4 +7,4 @@ # # See #730372 and https://lists.debian.org/debian-devel/2012/04/msg00301.html lighttpd: dir-or-file-in-var-www var/www/html/ # This is intentionally provided -lighttpd: package-contains-empty-directory usr/lib/cgi-bin/ +lighttpd: dir-or-file-in-var-www var/www/cgi-bin/ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/lighty-enable-mod new/debian/lighty-enable-mod --- old/debian/lighty-enable-mod 2014-08-18 05:39:29.000000000 +0200 +++ new/debian/lighty-enable-mod 2017-01-14 22:07:19.000000000 +0100 @@ -177,5 +177,5 @@ } } -print "Run /etc/init.d/lighttpd force-reload to enable changes\n"; +print "Run \"service lighttpd force-reload\" to enable changes\n"; exit($exit_status); diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/patches/kfreebsd-disable-test.patch new/debian/patches/kfreebsd-disable-test.patch --- old/debian/patches/kfreebsd-disable-test.patch 2014-08-18 05:39:29.000000000 +0200 +++ new/debian/patches/kfreebsd-disable-test.patch 1970-01-01 01:00:00.000000000 +0100 @@ -1,18 +0,0 @@ -description: disable mod-fastcgi test on kfreebsd -author: Michael Gilbert <[email protected]> - ---- a/tests/run-tests.pl 2014-03-23 06:02:39.000000000 +0000 -+++ b/tests/run-tests.pl 2014-03-23 06:04:40.473881736 +0000 -@@ -16,5 +16,12 @@ - push @fs, $srcdir.'/'.$f; - } - } -+ -+# avoid indeterminant test on kfreebsd -+use Config; -+if (index($Config{'archname'}, 'freebsd') != -1) { -+ @fs = grep(!/mod-fastcgi.t/, @fs); -+} -+ - closedir DIR; - runtests (sort @fs); diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/patches/series new/debian/patches/series --- old/debian/patches/series 2015-07-11 14:32:42.000000000 +0200 +++ new/debian/patches/series 1970-01-01 01:00:00.000000000 +0100 @@ -1 +0,0 @@ -kfreebsd-disable-test.patch diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/rules new/debian/rules --- old/debian/rules 2016-12-19 01:04:25.000000000 +0100 +++ new/debian/rules 2017-11-12 12:56:59.000000000 +0100 @@ -11,25 +11,28 @@ override_dh_auto_configure: dh_auto_configure -- \ - --disable-dependency-tracking \ - --libdir=/usr/lib/lighttpd \ - --libexecdir="/usr/lib/lighttpd" \ - --with-attr \ - --with-fam \ - --with-gdbm \ - --with-krb5 \ - --with-ldap \ - --with-geoip \ - --with-memcached \ - --with-lua=lua5.1 \ - --with-mysql \ - --with-openssl \ - --with-pcre \ - --with-webdav-locks \ - --with-webdav-props \ - CFLAGS_FOR_BUILD="$(shell dpkg-buildflags --get CFLAGS)" \ - LDFLAGS_FOR_BUILD="$(shell dpkg-buildflags --get LDFLAGS)" \ - CPPFLAGS_FOR_BUILD="$(shell dpkg-buildflags --get CPPFLAGS)" \ + --disable-dependency-tracking \ + --libdir=/usr/lib/lighttpd \ + --libexecdir="/usr/lib/lighttpd" \ + --with-attr \ + --with-fam \ + --with-gdbm \ + --with-krb5 \ + --with-ldap \ + --with-geoip \ + --with-memcached \ + --with-lua=lua5.1 \ + --with-dbi \ + --with-mysql \ + --with-pgsql \ + --with-openssl \ + --with-pcre \ + --with-sasl \ + --with-webdav-locks \ + --with-webdav-props \ + CFLAGS_FOR_BUILD="$(shell dpkg-buildflags --get CFLAGS)" \ + LDFLAGS_FOR_BUILD="$(shell dpkg-buildflags --get LDFLAGS)" \ + CPPFLAGS_FOR_BUILD="$(shell dpkg-buildflags --get CPPFLAGS)" \ override_dh_install: cp NEWS debian/tmp/changelog diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/source/options new/debian/source/options --- old/debian/source/options 2014-08-18 05:39:29.000000000 +0200 +++ new/debian/source/options 1970-01-01 01:00:00.000000000 +0100 @@ -1 +0,0 @@ ---extend-diff-ignore='src/mod_ssi_exprparser.c|src/configparser.c' diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/source.lintian-overrides new/debian/source.lintian-overrides --- old/debian/source.lintian-overrides 1970-01-01 01:00:00.000000000 +0100 +++ new/debian/source.lintian-overrides 2017-10-22 10:15:54.000000000 +0200 @@ -0,0 +1,3 @@ +# needed to build on oldstable/stable +lighttpd source: ored-build-depends-on-obsolete-package build-depends: dh-systemd (>= 1.3) => use debhelper (>= 9.20160709) +lighttpd source: ored-build-depends-on-obsolete-package build-depends: libmysqlclient-dev => default-libmysqlclient-dev diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/debian/watch new/debian/watch --- old/debian/watch 2016-12-19 01:04:25.000000000 +0100 +++ new/debian/watch 2017-10-22 10:15:54.000000000 +0200 @@ -1,3 +1,3 @@ version=3 opts="pgpsigurlmangle=s/$/.asc/" \ -http://download.lighttpd.net/lighttpd/releases-1.4.x/ lighttpd-(.*)\.tar\.xz +https://download.lighttpd.net/lighttpd/releases-1.4.x/ lighttpd-(.*)\.tar\.xz ++++++ lighttpd_1.4.45-0.1.dsc -> lighttpd_1.4.48-0.2.dsc ++++++ --- /work/SRC/openSUSE:Factory/lighttpd/lighttpd_1.4.45-0.1.dsc 2017-01-25 23:26:26.506675661 +0100 +++ /work/SRC/openSUSE:Factory/.lighttpd.new/lighttpd_1.4.48-0.2.dsc 2017-11-17 10:59:05.754716439 +0100 @@ -3,46 +3,57 @@ Format: 3.0 (quilt) Source: lighttpd -Binary: lighttpd, lighttpd-doc, lighttpd-mod-mysql-vhost, lighttpd-mod-trigger-b4-dl, lighttpd-mod-cml, lighttpd-mod-magnet, lighttpd-mod-webdav, lighttpd-mod-authn-gssapi, lighttpd-mod-authn-ldap, lighttpd-mod-authn-mysql, lighttpd-mod-geoip +Binary: lighttpd, lighttpd-doc, lighttpd-mod-mysql-vhost, lighttpd-mod-vhostdb-dbi, lighttpd-mod-vhostdb-ldap, lighttpd-mod-vhostdb-mysql, lighttpd-mod-vhostdb-pgsql, lighttpd-mod-trigger-b4-dl, lighttpd-mod-cml, lighttpd-mod-magnet, lighttpd-mod-webdav, lighttpd-mod-authn-gssapi, lighttpd-mod-authn-ldap, lighttpd-mod-authn-mysql, lighttpd-mod-authn-sasl, lighttpd-mod-geoip Architecture: any all -Version: 1.4.45-0.1 +Version: 1.4.48-0.2 Maintainer: Debian lighttpd maintainers <[email protected]> Uploaders: Krzysztof Krzyżaniak (eloy) <[email protected]>, Olaf van der Spek <[email protected]>, Arno Töll <[email protected]>, Michael Gilbert <[email protected]> -Homepage: http://lighttpd.net/ -Standards-Version: 3.9.8 -Vcs-Browser: http://anonscm.debian.org/gitweb/?p=pkg-lighttpd/lighttpd.git -Vcs-Git: git://anonscm.debian.org/pkg-lighttpd/lighttpd.git -Build-Depends: dpkg-dev (>= 1.16.1~), debhelper (>= 9.20130624~), dh-systemd (>= 1.3), dh-autoreconf, mime-support, libssl-dev, zlib1g-dev, libbz2-dev, libattr1-dev, libpcre3-dev, default-libmysqlclient-dev | libmysqlclient-dev, libfam-dev, libldap2-dev, libfcgi-dev, libgdbm-dev, libgeoip-dev, liblua5.1-0-dev, libmemcached-dev, pkg-config, uuid-dev, libsqlite3-dev, libxml2-dev, libkrb5-dev, perl, libcgi-pm-perl +Homepage: https://lighttpd.net/ +Standards-Version: 4.1.1 +Vcs-Browser: https://anonscm.debian.org/gitweb/?p=pkg-lighttpd/lighttpd.git +Vcs-Git: https://anonscm.debian.org/git/pkg-lighttpd/lighttpd.git +Build-Depends: dpkg-dev (>= 1.16.1~), debhelper (>= 9.20130624~), debhelper (>= 9.20160709) | dh-systemd (>= 1.3), dh-autoreconf, mime-support, libssl-dev, zlib1g-dev, libbz2-dev, libattr1-dev, libpcre3-dev, libdbi-dev, libpq-dev, default-libmysqlclient-dev | libmysqlclient-dev, libfam-dev, libldap2-dev, libfcgi-dev, libgdbm-dev, libgeoip-dev, liblua5.1-0-dev, libmemcached-dev, pkg-config, uuid-dev, libsqlite3-dev, libxml2-dev, libkrb5-dev, libsasl2-dev, perl, libcgi-pm-perl Package-List: lighttpd deb httpd optional arch=any lighttpd-doc deb doc optional arch=all lighttpd-mod-authn-gssapi deb httpd optional arch=any lighttpd-mod-authn-ldap deb httpd optional arch=any lighttpd-mod-authn-mysql deb httpd optional arch=any + lighttpd-mod-authn-sasl deb httpd optional arch=any lighttpd-mod-cml deb httpd optional arch=any lighttpd-mod-geoip deb httpd optional arch=any lighttpd-mod-magnet deb httpd optional arch=any lighttpd-mod-mysql-vhost deb httpd optional arch=any lighttpd-mod-trigger-b4-dl deb httpd optional arch=any + lighttpd-mod-vhostdb-dbi deb httpd optional arch=any + lighttpd-mod-vhostdb-ldap deb httpd optional arch=any + lighttpd-mod-vhostdb-mysql deb httpd optional arch=any + lighttpd-mod-vhostdb-pgsql deb httpd optional arch=any lighttpd-mod-webdav deb httpd optional arch=any Checksums-Sha1: - 03e516f8be59396bc148218fe7b993219dacaf5d 660432 lighttpd_1.4.45.orig.tar.xz - f9f181fa784b49c18f30ce3ab4a9514a9bccbeb2 56560 lighttpd_1.4.45-0.1.debian.tar.xz + e48274a53d6c5aeb085644c30c8dd8ab0e2f8212 708396 lighttpd_1.4.48.orig.tar.xz + 7b475f68d6c63469342c2f604b1f2c3fbef45c80 48340 lighttpd_1.4.48-0.2.debian.tar.xz Checksums-Sha256: - 1c97225deea33eefba6d4158c2cef27913d47553263516bbe9d2e2760fc43a3f 660432 lighttpd_1.4.45.orig.tar.xz - 211ae709717e610caa7876bb5f46bd5e6f51203baa9c6461dbc5ab60d6a4686d 56560 lighttpd_1.4.45-0.1.debian.tar.xz + 0f8ad5aac7529d7b948b9d7e8cd0b4a9e177309d85d6bf6516e28e6e40d74f36 708396 lighttpd_1.4.48.orig.tar.xz + 7b5ce9b33a9c8417bd82d7cbb1c5bc2d7d02b5cac3cc1fc503b96eca7ffde220 48340 lighttpd_1.4.48-0.2.debian.tar.xz Files: - a128e1eda76899ce3fd115efae5fe631 660432 lighttpd_1.4.45.orig.tar.xz - 3cd4f8a75e2646bfcc17d72270ebccb5 56560 lighttpd_1.4.45-0.1.debian.tar.xz + 1e3a9eb5078f481e3a8a1d0aaac8c3c8 708396 lighttpd_1.4.48.orig.tar.xz + 8f26832de56613f01e5774c78a0f40a3 48340 lighttpd_1.4.48-0.2.debian.tar.xz -----BEGIN PGP SIGNATURE----- -Version: GnuPG v2 -iQEcBAEBCAAGBQJYegzeAAoJEE3M2orHRjXriBEH/1NkSh1rQhWFqYFRNLv2M60G -l4vhyfeUs+GCmCyI/XatTBEEYm2PvzeTAumd7bByTu3MK6+uZiODrOkKCFdai/j0 -lfo83nzLR1lkQxLdZ1Eq7YdcpmmhxIFoUSJjNrDA3ksoF2U/rafCo6P3LXWTHBV4 -sGlIy04VcfTTNmXH04lENparRCjiNHrmKqVQTFJZyK00EmN8bUJ1GWvpUogi2Kwg -PL6E8owlhE8K4MBorATlwpE6raVTUWQGfUkF04+7VKC/YmYlTeAlb4XIdn52VGru -4VO2SBCzDdMsa54e/V7hklFRYzUIPiPcIOctjI1Acj9yiAXkafdB8IWhYoVKUq8= -=S/HP +iQJFBAEBCAAvFiEEx8oenincd/VICJSy4OfQFx6VutcFAloIQq8RHHN0YnVlaGxl +ckB3ZWIuZGUACgkQ4OfQFx6VutfPjQ//RwMEoJ6+gwMGXgH9G1HkHhZwCpzSTYk8 +vuUCZEDolFeYdJ4HZTL09FSlTo5qzFKKbgSR3ay5R/CScN6Q3UW2s9IZIiJMrtH9 +KMhhAgC5R/Axg6JoQhhCpz/BmO1pBzMDQA8N33rku4J+aqrrLVqaX9L6JqpLVBBI +Z0NtYJbOoZbIdYbTP3bYr28zgv6JVutrHpoDYccm3Jr1h4dtEk4SO7tBxMU9oGa1 +WbdbNo/fPKZrHAhCQSmikCsiOAUVTYv8FPiZ2fNFYQFkrVD+1yUFH7OA0U516jWt +j+Of9F48B9vCsIVgf4iASvwQlemuxorLbF6+4SeW9wpxLeKfwMfYROQ5+r1C70+z +FaZDq7SV1pdTIJe7/Gxar6DhzM07ZVGxgdFGh1xj5BWnWb9SlX6vXToBqEyiKKi1 +NQ1NUw7hO9sBne5ugtPvdejG74a16fYwqoy3uyoqP9g6a8IOj42Qgu9KsgTeS+Hw +5ZvgVCQ+VZ/Dg2EJRbDByk8z+bfEHZeAkVe1e8NuUAYmqEC0NGsFHNwC4MyFAV8J +dZ+7/IAOBSZFaMB6ilZyM5ljzx7xb4dfvXVjCHxmf1FDpBv+Wu0E/8FRNwdIC/bp +4IvBMaMZFQXm34byj8x6p14hC/oNcNLrrxbClDoO/Y0BbdlsLXWuGYt83e4ZfcmT +/9nBn+HoIm0= +=Ubz0 -----END PGP SIGNATURE----- ++++++ lighttpd_1.4.45.orig.tar.xz -> lighttpd_1.4.48.orig.tar.xz ++++++ ++++ 56290 lines of diff (skipped)
