pkgsrc-Changes-HG archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

[pkgsrc/trunk]: pkgsrc/www/caddy Update caddy to 0.11.4.

branches:  trunk
changeset: 319627:12cadd78fd7b
user:      bsiegert <>
date:      Sat Feb 16 19:20:52 2019 +0000

Update caddy to 0.11.4.

0.11.4 (February 15, 2019)

  * New -json-to-caddyfile and -caddyfile-to-json flags
  * Fix leaking logging goroutine on SIGUSR1
  * basicauth: Error is logged when authentication fails
  * proxy: Fix bug by re-adding pre-existing trailing slashes
  * tls: Fix bug related to certificate storage path

0.11.3 (February 5, 2019)

  * New {server_port} placeholder
  * New third-party plugin: extauth
  * New flags -log-roll-mb and -log-roll-compress
  * basicauth: Bypass for OPTIONS method
  * errors/log: Ability to disable log rolling
  * proxy: New subdirective 'ca_certificates'
  * staticfiles: Require GET method to serve static files
  * tls: Fixes to self-signed certs, IP certs, email prompts, & more
  * SOLVED REGRESSIONS: #2356, #2414
  * A number of other important fixes and improvements

0.11.2 (January 16, 2019)

  * Extracted automagic TLS code into CertMagic library
  * Add support for new clustering plugins
  * New placeholder: '{when_iso_local}'
  * New third-party plugins: s3browser, filebrowser
  * Removed third-party plugins: jekyll, hugo
  * bind: Support multiple interface values
  * import: Can now be used within directive blocks
  * proxy: Status 499 when clients close connection early
  * templates: No longer emit ETag and Last-Modified headers
  * tls: Support for the ACME TLS-ALPN-01 challenge
  * Several bug fixes and minor improvements


This release has been about 6 months in the making! Featuring an integrated
telemetry client, you can now view stats about your Caddy instance and
contribute to Internet research. Telemetry is entirely optional. Read the blog
post and telemetry docs for more information, and check out our global stats!
You can also look up details about your own instances there.

Full change list:

  * Built with Go 1.10.2
  * Integrated optional telemetry client
  * proxy: Fixed file descriptor leak


  * tls: Fix error handling bug when obtaining certificates


Caddy 0.10.13 is a minor release that fixes security flaws in TLS client
authentication and On-Demand TLS. It is recommended that everyone relying on
these capabilities upgrade. This release also has bug fixes for the Caddyfile
parser (caught by fuzzing) and handling errors when a certificate could not be
obtained via ACME.

Do not use this version, it cannot obtain certificates due to a bug. Version
0.10.14 fixed this.

Change list:

  * New third-party plugin: supervisor
  * Updated QUIC
  * proxy: Fix transparent pass-thru of X-Forwarded-For
  * proxy: Configurable timeout to upstream
  * rewrite: Now supports regular expressions on single-line
  * tls: StrictHostMatching mode to prevent client auth bypass
  * tls: Disable client auth when using QUIC
  * tls: Require same client auth cert pools per hostname
  * tls: Prevent On-Demand TLS directory traversal
  * tls: Fix empty files when using ACME fails to obtain cert
  * Fixed test broken by resolving
  * Improved Caddyfile parser robustness by fuzzing


This release brings ACMEv2 and wildcard certificate support!

Read the release announcement blog post for details. There's some things in
there you should know, including a description of how some really cool features

Thanks to everyone who contributed to this release!

Change list:

  * Switch to Let's Encrypt ACMEv2 production endpoint
  * Support for automated wildcard certificates
  * Support distributed solving of HTTP-01 challenge
  * New {labelN}, {tls_cipher}, and {tls_version} placeholders
  * Curly braces can now be escaped when not used as placeholders
  * New third-party plugin: geoip
  * Updated QUIC
  * fastcgi: Add SSL_CIPHER and SSL_PROTOCOL environment variables
  * log: New 'except' subdirective to exempt paths from logging
  * startup/shutdown: Removed in favor of 'on'
  * tls: Default minimum version is TLS 1.2
  * tls: Revert to fallback cert if no cert matches SNI
  * tls: New 'wildcard' subdirective to force automated wildcard cert
  * Several significant bug fixes and improvements!


 www/caddy/Makefile |   5 ++---
 www/caddy/distinfo |  10 +++++-----
 2 files changed, 7 insertions(+), 8 deletions(-)

diffs (31 lines):

diff -r 7fcd9618b8fa -r 12cadd78fd7b www/caddy/Makefile
--- a/www/caddy/Makefile        Sat Feb 16 18:19:16 2019 +0000
+++ b/www/caddy/Makefile        Sat Feb 16 19:20:52 2019 +0000
@@ -1,10 +1,9 @@
-# $NetBSD: Makefile,v 1.11 2019/01/24 10:00:45 bsiegert Exp $
+# $NetBSD: Makefile,v 1.12 2019/02/16 19:20:52 bsiegert Exp $
 DISTNAME=      caddy-${GITHUB_TAG:S/v//}
-GITHUB_TAG=    v0.10.11
+GITHUB_TAG=    v0.11.4
 HOMEPAGE=      ${MASTER_SITE_GITHUB:=mholt/caddy/}
diff -r 7fcd9618b8fa -r 12cadd78fd7b www/caddy/distinfo
--- a/www/caddy/distinfo        Sat Feb 16 18:19:16 2019 +0000
+++ b/www/caddy/distinfo        Sat Feb 16 19:20:52 2019 +0000
@@ -1,6 +1,6 @@
-$NetBSD: distinfo,v 1.4 2018/03/14 08:41:32 bsiegert Exp $
+$NetBSD: distinfo,v 1.5 2019/02/16 19:20:52 bsiegert Exp $
-SHA1 (caddy-0.10.11.tar.gz) = 15ab2233756a474ced6a78ef43b1420e5ce717d0
-RMD160 (caddy-0.10.11.tar.gz) = 00c14040065168bdf0e1e4cea36872d990d386ff
-SHA512 (caddy-0.10.11.tar.gz) = 03539ae59f654d56ad0b441e7f67eb51135b1ffd539f9eb5953445089e72d3eab905ad9b08b001ef27e5054b760887a898b89ea85b48b4f852398b073e6e4924
-Size (caddy-0.10.11.tar.gz) = 2860871 bytes
+SHA1 (caddy-0.11.4.tar.gz) = e03d7c9190f5c27b94731d3fdb61b5f440a07af3
+RMD160 (caddy-0.11.4.tar.gz) = 56af7fc1841027c87f65ce5c3a09b0d1dd5e09ab
+SHA512 (caddy-0.11.4.tar.gz) = 463c1e570292c042ffc959c2bf0c20df55477843deeef2f782030fe681ab8c5317505fdb00659662d52ffc8a56b5b1a7b7e6fc72b7f737d4950331ac781f239a
+Size (caddy-0.11.4.tar.gz) = 5789395 bytes

Home | Main Index | Thread Index | Old Index