Commit Graph

707 Commits (2dbcfc926604df95bb8ba7d6a8cfee96a2fcfefd)

Author SHA1 Message Date
Glenn Strauss a9e131fa37 - next is 1.4.51 2018-08-13 00:43:56 -04:00
Glenn Strauss a2114a1c9b [doc] NEWS 2018-08-12 22:27:02 -04:00
Glenn Strauss ae54806dc2 - next is 1.4.50 2018-03-11 21:54:44 -04:00
Glenn Strauss d0d5d4267b [doc] NEWS 2018-03-11 20:23:32 -04:00
Glenn Strauss de937f47f8 - next is 1.4.49 2017-11-12 00:53:51 -05:00
Glenn Strauss 2c7d70eddb [doc] NEWS 2017-11-11 11:13:39 -05:00
Glenn Strauss 5a5ce3dc75 [doc] NEWS - fix improper format line breaks 2017-11-05 00:36:16 -04:00
Glenn Strauss 6a17133a75 - next is 1.4.48 2017-10-22 16:43:33 -04:00
Glenn Strauss f558fc9735 [doc] NEWS 2017-10-22 15:36:55 -04:00
Glenn Strauss 0c1aed55d5 [doc] use https:// URLs to resources 2017-10-22 15:01:48 -04:00
Glenn Strauss 5780d6cc58 - next is 1.4.47 2017-10-21 16:37:13 -04:00
Glenn Strauss f07bcb145c [doc] NEWS 2017-10-21 15:42:49 -04:00
Glenn Strauss b0d63e31e8 - next is 1.4.46 2017-01-14 01:06:00 -05:00
Glenn Strauss 4f00aafcde [doc] NEWS 2017-01-10 16:24:27 -05:00
Glenn Strauss 656f9e454d - next is 1.4.45 2016-12-24 01:07:46 -05:00
Glenn Strauss 367bc5fd28 [doc] NEWS 2016-12-23 20:49:46 -05:00
Stefan Bühler d352790331 [mod_authn_gssapi] fix memory leak 2016-11-02 09:23:47 +01:00
Stefan Bühler 5e3653dc5d [mod_scgi] fix segfault (fixes #2762) 2016-11-02 08:13:44 +01:00
Glenn Strauss 33e3504bcb - next is 1.4.44 2016-10-31 09:58:23 -04:00
Glenn Strauss 738ebd5b29 [doc] NEWS 2016-10-29 10:41:44 -04:00
Glenn Strauss 22c560c228 - next is 1.4.43 2016-10-16 07:58:46 -04:00
Glenn Strauss 3468974e0b [doc] NEWS 2016-10-16 03:07:46 -04:00
Glenn Strauss ccd817d3c9 - next is 1.4.42 2016-07-31 08:40:41 -04:00
Glenn Strauss 29fa805695 [doc] NEWS 2016-07-31 02:41:20 -04:00
Glenn Strauss 8f8fa606ca - next is 1.4.41 2016-07-16 07:58:40 -04:00
Glenn Strauss 268c5582b2 [doc] NEWS 2016-07-15 20:02:17 -04:00
Glenn Strauss fd6a66b463 [doc] NEWS 2016-06-26 01:23:24 -04:00
Glenn Strauss 488688301e [doc] NEWS 2016-06-04 18:59:31 -04:00
Glenn Strauss 239c7e3026 [doc] NEWS 2016-05-10 22:33:44 -04:00
Glenn Strauss 01ec2c458c [doc] NEWS 2016-05-02 23:51:50 -04:00
Glenn Strauss 0f7c068010 [doc] NEWS 2016-04-28 13:39:57 -04:00
Glenn Strauss 8f255d35df [doc] NEWS 2016-04-25 01:53:19 -04:00
Glenn Strauss 49c74fff65 [core] compile with upcoming openssl 1.1.0 release (fixes #2727)
(thx falemagn)

  "Won't compile with OpenSSL 1.1.0"
2016-04-24 20:28:03 -04:00
Glenn Strauss 77bd45121c [core] retry tempdirs on partial write, ENOSPC (fixes #2588)
Previous code would fail on partial write, EINTR, and ENOSPC.
Upon any of the above errors, this patch tries next tempdir in list,
if list of tempdirs provided by config option server.upload-dirs

  "Problem when uploading large files"

Closes #54
2016-04-18 04:30:55 -04:00
Glenn Strauss 71ed1912c7 [config] server.listen-backlog option (fixes #1825, #2116)
See doc/config/lighttpd.conf for explanation of listen() backlog queue

Additionally, mod_fastcgi and mod_scgi backend servers can now also be
configured with separate listen-backlog settings per server

  "add server.listen-backlog option instead of hard-coded value (128 * 8) for listen()"
  "Don't disable backend when overloaded"

Closes #50
2016-04-18 04:29:28 -04:00
Glenn Strauss a65c57a548 [core] open fd when appending file to cq (fixes #2655)
http_chunk_append_file() opens fd when appending file to chunkqueue.
Defers calculation of content length until response is finished.

This reduces race conditions pertaining to stat() and then (later)
open(), when the result of the stat() was used for Content-Length
or to generate chunked headers.

Note: this does not change how lighttpd handles files that are modified
in-place by another process after having been opened by lighttpd --
don't do that.  This *does* improve handling of files that are
frequently modified via a temporary file and then atomically renamed
into place.

mod_fastcgi has been modified to use http_chunk_append_file_range() with
X-Sendfile2 and will open the target file multiple times if there are
multiple ranges.

Note: (future todo) not implemented for chunk.[ch] interfaces used by
range requests in mod_staticfile or by mod_ssi.  Those uses could lead
to too many open fds.  For mod_staticfile, limits should be put in place
for max number of ranges accepted by mod_staticfile.  For mod_ssi,
limits would need to be placed on the maximum number of includes, and
the primary SSI file split across lots of SSI directives should either
copy the pieces or perhaps chunk.h could be extended to allow for an
open fd to be shared across multiple chunks.  Doing either of these
would improve the performance of SSI since they would replace many file
opens on the pieces of the SSI file around the SSI directives.

  "Serving a file that is getting updated can cause an empty response or incorrect content-length error"

Closes #49
2016-04-18 04:27:08 -04:00
Glenn Strauss e0bafab2db [mod_indexfile] save physical path to env (fixes #448, #892)
save physical path to environment (PATH_TRANSLATED_DIRINDEX)
when index generator is full path (not relative path)

fix uri.path when index generator is full path (not relative path)
2016-04-14 16:02:11 -04:00
Glenn Strauss 186e7073fb [mod_redirect,mod-rewrite] short-circuit if blank replacement (fixes #2085)
  "null redirects for mod_redirect"
2016-04-14 16:01:45 -04:00
Glenn Strauss fa3a36ffd4 [mod_ssi] config ssi.exec (fixes #2051)
(thx benbrown)

  "mod_ssi Add configuration item to disable SSI exec."
2016-04-14 08:59:07 -04:00
fbrosson 6982b1930e [mod_ssi] config ssi.conditional-requests
A new SSI directive, "ssi.conditional-requests", allows to inform
lighttpd which SSI pages should be considered as cacheable and which
should not. In particular, the "ETag" & "Last-Modified" headers will
only be sent for those SSI pages for which the directive is enabled.

Long description:
"ETag" and "Last-Modified" headers were being sent for all SSI pages,
regardless of whether they were cacheable or not. And yet, there was
no cache validation at all for any SSI page.
This commit fixes these two minor issues by adding a new directive,
"ssi.conditional-requests", which allows to specify which SSI pages
are cacheable and which are not, and by adding cache validation to
those SSI pages which are cacheable. And since sending ETags for
non-cacheable documents is not appropriate, they are no longuer
computed nor sent for those SSI pages which are not cacheable.
Regarding the "Last-Modified" header for non-cacheable documents,
the standards allow to either send the current date and time for
that header or to simply skip it. The approach chosen is to not send
it for non-cacheable SSI pages. "ETag" and "Last-Modified" headers
are therefore only sent for an SSI page if ssi.conditional-requests
is enabled for that page.

The ssi.conditional-requests directive can be enabled or disabled
globally and/or in any context. It is disabled by default.

An index.shtml which only includes deterministic SSI commands such as:
<!--#echo var="LAST_MODIFIED"-->
is a trivial example of a dynamic SSI page that is cacheable.
2016-04-14 12:35:10 +00:00
Glenn Strauss bb95317774 [core] setrlimit max-fds <= rlim_max for non-root (fixes #2723)
  "setrlimit can increase RLIMIT_NOFILE up to rlim_max for non-root"
2016-04-13 03:54:06 -04:00
Glenn Strauss 51e0f2087b [core] define __STDC_WANT_LIB_EXT1__ (fixes #2722)
  "define __STDC_WANT_LIB_EXT1__ for memset_s()"
2016-04-13 03:54:04 -04:00
Glenn Strauss c63427c999 [mod_dirlisting] class for dir <tr> (fixes #2304)
  "special class for directories tr's in directory listing"
2016-04-13 02:18:16 -04:00
Glenn Strauss dc9f95c75d [mod_status] table w/ count of con states (fixes #2427)
(replaces "legend")
2016-04-13 02:12:54 -04:00
Glenn Strauss c68f83aed4 [mod_status] page refresh option (fixes #2170)
e.g. http://server-address/server-status?refresh=10

  "server-status page should have an automatic reload"
2016-04-13 02:08:24 -04:00
Glenn Strauss 760baed402 [mod_expire] reset caching response headers for error docs (fixes #1919)
remove Cache-Control and Expires headers before handling error docs
(caching headers may have been set by mod_expire before http status
 was determined to be an error)

  "mod_expires sends headers on 404 responses"
2016-04-13 01:04:39 -04:00
Glenn Strauss f4cb07f723 [mod_webdav] readdir POSIX compat (fixes #1826)
do not expect '.' to be part of dir listing

  "mod_webdav readdir POSIX compatibility issue"
2016-04-13 00:23:31 -04:00
Glenn Strauss e5e5548b88 [mod_extforward] reset cond_cache for scheme (fixes #1499)
bug #1499 was mostly fixed in 05858f6c
This patch additionally resets the cond_cache since scheme might change

  "HTTPS env var should be "on" when using mod_extforward and the X-Forwarded-Proto header is set."
2016-04-13 00:17:46 -04:00
Glenn Strauss 659ce5e78e [mod_magnet] rename var for clarity (fixes #1483)
"length" argument is more accurately described as 0-index end of range

  "magnet offset > length bug"
2016-04-13 00:07:26 -04:00
Glenn Strauss 4b412797b8 [mod_auth] send charset="UTF-8" in WWW-Authenticate (fixes #1468) and (September 2015)
update Digest and Basic auth to allow server to recommend charset
which should be used by client.

  "LDAP UTF-8 encoding"
2016-04-12 23:56:55 -04:00