The NetBSD Project

CVS log for pkgsrc/www/caddy/Makefile

[BACK] Up to [] / pkgsrc / www / caddy

Request diff between arbitrary revisions

Default branch: MAIN

Revision 1.17 / (download) - annotate - [select for diffs], Wed Aug 14 15:45:50 2019 UTC (3 days, 17 hours ago) by bsiegert
Branch: MAIN
Changes since 1.16: +2 -2 lines
Diff to previous 1.16 (colored)

Recursive bump of all packages using Go after Go 1.12.8 update.

Revision 1.16 / (download) - annotate - [select for diffs], Mon May 27 15:18:33 2019 UTC (2 months, 3 weeks ago) by bsiegert
Branch: MAIN
CVS Tags: pkgsrc-2019Q2-base, pkgsrc-2019Q2
Changes since 1.15: +2 -2 lines
Diff to previous 1.15 (colored)

Revbump all Go packages after go112 update.

Revision 1.15 / (download) - annotate - [select for diffs], Tue Apr 16 18:41:19 2019 UTC (4 months ago) by bsiegert
Branch: MAIN
Changes since 1.14: +2 -2 lines
Diff to previous 1.14 (colored)

Revbump all Go packages after go112 update

Revision 1.14 / (download) - annotate - [select for diffs], Sat Mar 16 08:35:49 2019 UTC (5 months ago) by bsiegert
Branch: MAIN
CVS Tags: pkgsrc-2019Q1-base, pkgsrc-2019Q1
Changes since 1.13: +2 -2 lines
Diff to previous 1.13 (colored)

Revbump all Go packages after Go 1.12.1 update.

Revision 1.13 / (download) - annotate - [select for diffs], Sat Mar 9 10:05:13 2019 UTC (5 months, 1 week ago) by bsiegert
Branch: MAIN
Changes since 1.12: +2 -1 lines
Diff to previous 1.12 (colored)

all: revbump Go packages, now that they use go112 to build

Revision 1.12 / (download) - annotate - [select for diffs], Sat Feb 16 19:20:52 2019 UTC (6 months ago) by bsiegert
Branch: MAIN
Changes since 1.11: +2 -3 lines
Diff to previous 1.11 (colored)

Update caddy to 0.11.4.

0.11.4 (February 15, 2019)

  * New -json-to-caddyfile and -caddyfile-to-json flags
  * Fix leaking logging goroutine on SIGUSR1
  * basicauth: Error is logged when authentication fails
  * proxy: Fix bug by re-adding pre-existing trailing slashes
  * tls: Fix bug related to certificate storage path

0.11.3 (February 5, 2019)

  * New {server_port} placeholder
  * New third-party plugin: extauth
  * New flags -log-roll-mb and -log-roll-compress
  * basicauth: Bypass for OPTIONS method
  * errors/log: Ability to disable log rolling
  * proxy: New subdirective 'ca_certificates'
  * staticfiles: Require GET method to serve static files
  * tls: Fixes to self-signed certs, IP certs, email prompts, & more
  * SOLVED REGRESSIONS: #2356, #2414
  * A number of other important fixes and improvements

0.11.2 (January 16, 2019)

  * Extracted automagic TLS code into CertMagic library
  * Add support for new clustering plugins
  * New placeholder: '{when_iso_local}'
  * New third-party plugins: s3browser, filebrowser
  * Removed third-party plugins: jekyll, hugo
  * bind: Support multiple interface values
  * import: Can now be used within directive blocks
  * proxy: Status 499 when clients close connection early
  * templates: No longer emit ETag and Last-Modified headers
  * tls: Support for the ACME TLS-ALPN-01 challenge
  * Several bug fixes and minor improvements


This release has been about 6 months in the making! Featuring an integrated
telemetry client, you can now view stats about your Caddy instance and
contribute to Internet research. Telemetry is entirely optional. Read the blog
post and telemetry docs for more information, and check out our global stats!
You can also look up details about your own instances there.

Full change list:

  * Built with Go 1.10.2
  * Integrated optional telemetry client
  * proxy: Fixed file descriptor leak


  * tls: Fix error handling bug when obtaining certificates


Caddy 0.10.13 is a minor release that fixes security flaws in TLS client
authentication and On-Demand TLS. It is recommended that everyone relying on
these capabilities upgrade. This release also has bug fixes for the Caddyfile
parser (caught by fuzzing) and handling errors when a certificate could not be
obtained via ACME.

Do not use this version, it cannot obtain certificates due to a bug. Version
0.10.14 fixed this.

Change list:

  * New third-party plugin: supervisor
  * Updated QUIC
  * proxy: Fix transparent pass-thru of X-Forwarded-For
  * proxy: Configurable timeout to upstream
  * rewrite: Now supports regular expressions on single-line
  * tls: StrictHostMatching mode to prevent client auth bypass
  * tls: Disable client auth when using QUIC
  * tls: Require same client auth cert pools per hostname
  * tls: Prevent On-Demand TLS directory traversal
  * tls: Fix empty files when using ACME fails to obtain cert
  * Fixed test broken by resolving
  * Improved Caddyfile parser robustness by fuzzing


This release brings ACMEv2 and wildcard certificate support!

Read the release announcement blog post for details. There's some things in
there you should know, including a description of how some really cool features

Thanks to everyone who contributed to this release!

Change list:

  * Switch to Let's Encrypt ACMEv2 production endpoint
  * Support for automated wildcard certificates
  * Support distributed solving of HTTP-01 challenge
  * New {labelN}, {tls_cipher}, and {tls_version} placeholders
  * Curly braces can now be escaped when not used as placeholders
  * New third-party plugin: geoip
  * Updated QUIC
  * fastcgi: Add SSL_CIPHER and SSL_PROTOCOL environment variables
  * log: New 'except' subdirective to exempt paths from logging
  * startup/shutdown: Removed in favor of 'on'
  * tls: Default minimum version is TLS 1.2
  * tls: Revert to fallback cert if no cert matches SNI
  * tls: New 'wildcard' subdirective to force automated wildcard cert
  * Several significant bug fixes and improvements!

Revision / (download) - annotate - [select for diffs], Fri Feb 8 12:03:19 2019 UTC (6 months, 1 week ago) by spz
Branch: pkgsrc-2018Q4
Changes since 1.10: +2 -2 lines
Diff to previous 1.10 (colored) next main 1.11 (colored)

revbump go dependents after lang/go111 and lang/go110 updates

Revision 1.11 / (download) - annotate - [select for diffs], Thu Jan 24 10:00:45 2019 UTC (6 months, 3 weeks ago) by bsiegert
Branch: MAIN
Changes since 1.10: +2 -2 lines
Diff to previous 1.10 (colored)

Revbump Go packages after lang/go111 update.

Revision 1.10 / (download) - annotate - [select for diffs], Wed Dec 19 15:47:11 2018 UTC (7 months, 4 weeks ago) by bsiegert
Branch: MAIN
CVS Tags: pkgsrc-2018Q4-base
Branch point for: pkgsrc-2018Q4
Changes since 1.9: +2 -2 lines
Diff to previous 1.9 (colored)

Revbump all Go packages after go111 update.

Revision 1.9 / (download) - annotate - [select for diffs], Sun Nov 4 18:38:08 2018 UTC (9 months, 1 week ago) by bsiegert
Branch: MAIN
Changes since 1.8: +2 -2 lines
Diff to previous 1.8 (colored)

Revbump all Go packages after go111 update.

Revision 1.8 / (download) - annotate - [select for diffs], Tue Jun 12 17:50:28 2018 UTC (14 months ago) by bsiegert
Branch: MAIN
CVS Tags: pkgsrc-2018Q3-base, pkgsrc-2018Q3, pkgsrc-2018Q2-base, pkgsrc-2018Q2
Changes since 1.7: +2 -2 lines
Diff to previous 1.7 (colored)

Revbump all Go packages after lang/go update.

Revision 1.7 / (download) - annotate - [select for diffs], Fri Mar 30 11:56:26 2018 UTC (16 months, 2 weeks ago) by bsiegert
Branch: MAIN
CVS Tags: pkgsrc-2018Q1-base, pkgsrc-2018Q1
Changes since 1.6: +2 -1 lines
Diff to previous 1.6 (colored)

Revbump all Go packages after 1.10.1 update.

ok wiz@ for committing during freeze

Revision 1.6 / (download) - annotate - [select for diffs], Wed Mar 14 08:41:32 2018 UTC (17 months ago) by bsiegert
Branch: MAIN
Changes since 1.5: +2 -3 lines
Diff to previous 1.5 (colored)

Update caddy to 0.10.11.

This release improves automatic HTTPS in cluster configurations, internal TLS
asset management, adds service discovery support to reverse proxying, reusable
snippets for the Caddyfile, and more!

Read the details in the announcement blog post!

A few minor "breaking" changes include how signals are handled, conflicting TLS
configurations are no longer allowed (an error is raised), and a TLS alert is
raised if SNI is used but no certificate is available, rather than serving a
default certificate.

Special thanks to Ed for helping us patch a minor path-based open redirect

Full change log:

Reusable snippets for the Caddyfile
Updated QUIC
Auto-HTTPS certificates may be shared by multiple instances
Expand globbed values in -conf flag
Swap behavior of SIGTERM and SIGQUIT; ignore SIGHUP
9 new DNS provider plugins for the ACME DNS challenge
New placeholder for {<Response-Header} values
basicauth: Username put in {user} placeholder
fastcgi: GET requests can now send a body
proxy: Service discovery with DNS SRV load balancing
request_id: Allow reusing request ID from header field
tls: Improved efficiency of many certificates and reloads
tls: Raise error if conflicting TLS configurations collide
tls: Raise TLS alert if SNI used and no cert matched
tls: Reject OCSP responses that expire after the certificate
tls: Clients can use SNI to request a specific certificate
tls: Add option for backend to approve on-demand certificate
tls: Synchronize maintenance of shared, managed certificates
Numerous fabulous bug fixes

Revision 1.5 / (download) - annotate - [select for diffs], Sun Mar 4 15:52:20 2018 UTC (17 months, 2 weeks ago) by bsiegert
Branch: MAIN
Changes since 1.4: +2 -1 lines
Diff to previous 1.4 (colored)

Revbump all Go packages after Go 1.10 update.

Revision 1.4 / (download) - annotate - [select for diffs], Tue Jan 9 20:55:12 2018 UTC (19 months, 1 week ago) by bsiegert
Branch: MAIN
Changes since 1.3: +2 -5 lines
Diff to previous 1.3 (colored)

Update caddy to 0.10.10.


- Removed Caddy-Sponsors header
- New 'on' directive that deprecates 'startup' and 'shutdown'
- Changed CASE_SENSITIVE_PATH default to false
- fastcgi: Support for SRV upstreams
- redir: Rules with if statements are not checked for duplicates
- Several minor bug fixes


- EULA bundled with official binaries
- Caddy-Sponsors header to indicate personal-use license
- proxy: Support for QUIC backends
- templates: Write proper status code if proxied
- tls: Fix bug related to cert renewals


This is mainly a security release, with a couple other bug fixes (see commit
history for details on those).

This release fixes issue #1859. Previously, Caddy would not compress/merge
multiple consecutive forward slashes in the URL for comparisons, causing
certain comparisons to fail falsely not because of technical correctness, but
rather semantic correctness (i.e. it depends on what is using the path, but
most often, file systems will annoyingly collapse multiple slashes). Now,
Caddy's path matching behaves similar to NGINX's location block if
merge_slashes is enabled. Caddy now merges slashes by default when comparing
paths using Go's path.Clean(), which also evaluates .. in paths to ensure
equivalence on a semantic level.

Revision 1.3 / (download) - annotate - [select for diffs], Mon Sep 4 17:56:18 2017 UTC (23 months, 1 week ago) by bsiegert
Branch: MAIN
CVS Tags: pkgsrc-2017Q4-base, pkgsrc-2017Q4, pkgsrc-2017Q3-base, pkgsrc-2017Q3, pkgsrc-
Changes since 1.2: +2 -2 lines
Diff to previous 1.2 (colored)

Update Caddy to 0.10.7.


This release introduces 3 new HTTP plugins: awses, jekyll, and forwardproxy,
and supports SIGUSR2 for graceful binary upgrades. Read the release blog post
for more information.

A huge thanks to our sponsors for making continued development possible, and
for keeping this release of Caddy free for everyone to use: Minio, Uptime
Robot, and Sourcegraph!

Change list:

- Built with Go 1.9
- New 3rd-party plugin HTTP directives: jekyll, awses, forwardproxy
- Different exit codes
- Plan 9 support
- Graceful binary upgrades with SIGUSR2
- internal: Support X-Accel-Redir without paths to protect
- templates: Can execute templates loaded by other middleware
- A few really good bug fixes


This is a hotfix for 0.10.5's fastcgi directive which invokes a runtime error
on 32-bit and ARM architectures, due to a known, documented bug in Go. We
don't run tests on 32-bit or ARM (yet) which would have been the only way to
catch this error in an automated fashion. Sorry about that. Enjoy this
release! It's the best one yet.


It's been kind of a crummy week for a lot of people, but here's some good
news: Caddy 0.10.5 is out! This release fixes subtle issues that were present
in proxying WebSockets or FastCGI connections. We've also improved MITM
detection for iOS clients. There is a new header-based load balancing policy.
On top of these changes, of note are these:

The requestid directive has been renamed to request_id to be more consistent
with other directives and subdirectives.

There is a new default timeout in town: the idle timeout now has a default
value of 5 minutes. Unlike the previous default timeouts, we don't expect this
will negatively impact anyone. There is generally no good use for idle
connections, and if you have a good use for them, you can disable this timeout
in your Caddyfile. (We've tested this timeout on several kinds of sites for
months and have had zero problems, only improvements in memory and FD usage.)

This release is compatible with three new 3rd-party plugins! The http.cache
plugin acts as a caching layer of middleware, which can drastically improve
performance of serving your site. http.nobots attempts to dissuade bots from
accessing your site. http.webdav was extracted from the filemanager plugin and
enables webdav serving.

As usual, a HUGE thanks to contributors who made this possible! Most of these
changes were implemented by contributors to the project, while the maintainers
have been busy working on improved proxy middleware and other things (that
hopefully we can reveal soon). Our community is fantastic, and we and all
Caddy users appreciate you. Thank you!

Full change log:

- Renamed requestid directive to request_id
- Set default idle timeout of 5 minutes
- New 3rd-party plugin directives: cache, nobots, webdav
- New Unix timestamp placeholder {when_unix}
- Improved MITM detection on iOS clients
- errors, log: Fix log rolling parsing
- gzip: Convert any ETag header to weak etag
- fastcgi: Reverted persistent connections (issue #1736)
- proxy: Added header loaded balancing policy
- proxy: Fix hang on chunked WebSockets (e.g. with HomeAssistant)
- Several other bug fixes and minor internal improvements

Revision 1.2 / (download) - annotate - [select for diffs], Sat Jul 22 19:32:41 2017 UTC (2 years ago) by wiz
Branch: MAIN
Changes since 1.1: +3 -1 lines
Diff to previous 1.1 (colored)

Sprinkle CHECK_RELRO_SKIP on go packages.

go14 has no relro support AFAICT.

go-1.8.3 has if you use -buildmode=pie, but it claims it's not supported
on Linux.

Disable relro checking for go packages until bsiegert has time to
look at this.

Revision 1.1 / (download) - annotate - [select for diffs], Tue Jul 11 20:26:41 2017 UTC (2 years, 1 month ago) by bsiegert
Branch: MAIN

Import caddy-0.10.4 from wip/caddy.

Caddy is a HTTP/2 web server with automatic HTTPS.

Caddy was born out of the need for a "batteries-included" web server
that runs anywhere and doesn't have to take its configuration with it.
Caddy took inspiration from spark, nginx, lighttpd, Websocketd and
Vagrant, which provides a pleasant mixture of features from each of

This form allows you to request diff's between any two revisions of a file. You may select a symbolic revision name using the selection box or you may type in a numeric name using the type-in text box.

CVSweb <>