From 89cfb0482353530309795237eb409a9d0327c04e Mon Sep 17 00:00:00 2001 From: Petteri Räty Date: Fri, 20 Feb 2009 17:55:56 +0000 Subject: Add a patch for SNI to lighttpd. svn path=/; revision=178 --- www-servers/lighttpd/ChangeLog | 1100 ++++++++++++++++++++ www-servers/lighttpd/Manifest | 16 + .../03_all_lighttpd-1.4.11-errorlog-pipe.diff | 175 ++++ .../04_all_1.4.x_tls_server_name_indication.diff | 324 ++++++ www-servers/lighttpd/files/conf/lighttpd.conf | 321 ++++++ www-servers/lighttpd/files/conf/mime-types.conf | 76 ++ www-servers/lighttpd/files/conf/mod_cgi.conf | 33 + www-servers/lighttpd/files/conf/mod_fastcgi.conf | 18 + .../lighttpd/files/conf/mod_fastcgi.conf-1.4.13-r2 | 17 + www-servers/lighttpd/files/lighttpd.confd | 12 + .../lighttpd/files/lighttpd.initd-1.4.13-r3 | 67 ++ www-servers/lighttpd/files/lighttpd.logrotate | 17 + www-servers/lighttpd/files/spawn-fcgi.confd | 35 + www-servers/lighttpd/files/spawn-fcgi.initd | 51 + www-servers/lighttpd/lighttpd-1.4.20-r1.ebuild | 212 ++++ www-servers/lighttpd/metadata.xml | 23 + 16 files changed, 2497 insertions(+) create mode 100644 www-servers/lighttpd/ChangeLog create mode 100644 www-servers/lighttpd/Manifest create mode 100644 www-servers/lighttpd/files/1.4.20/03_all_lighttpd-1.4.11-errorlog-pipe.diff create mode 100644 www-servers/lighttpd/files/1.4.20/04_all_1.4.x_tls_server_name_indication.diff create mode 100644 www-servers/lighttpd/files/conf/lighttpd.conf create mode 100644 www-servers/lighttpd/files/conf/mime-types.conf create mode 100644 www-servers/lighttpd/files/conf/mod_cgi.conf create mode 100644 www-servers/lighttpd/files/conf/mod_fastcgi.conf create mode 100644 www-servers/lighttpd/files/conf/mod_fastcgi.conf-1.4.13-r2 create mode 100644 www-servers/lighttpd/files/lighttpd.confd create mode 100644 www-servers/lighttpd/files/lighttpd.initd-1.4.13-r3 create mode 100644 www-servers/lighttpd/files/lighttpd.logrotate create mode 100644 www-servers/lighttpd/files/spawn-fcgi.confd create mode 100644 www-servers/lighttpd/files/spawn-fcgi.initd create mode 100644 www-servers/lighttpd/lighttpd-1.4.20-r1.ebuild create mode 100644 www-servers/lighttpd/metadata.xml diff --git a/www-servers/lighttpd/ChangeLog b/www-servers/lighttpd/ChangeLog new file mode 100644 index 0000000..1deb502 --- /dev/null +++ b/www-servers/lighttpd/ChangeLog @@ -0,0 +1,1100 @@ +# ChangeLog for www-servers/lighttpd +# Copyright 2000-2009 Gentoo Foundation; Distributed under the GPL v2 +# $Header: /var/cvsroot/gentoo-x86/www-servers/lighttpd/ChangeLog,v 1.193 2009/02/03 12:46:51 betelgeuse Exp $ + + 03 Feb 2009; Petteri Räty lighttpd-1.4.20.ebuild: + Block lighttpd until spawn-fcgi collision is fixed. See bug #224781. + + 06 Oct 2008; Christian Hoffmann metadata.xml: + adding myself to metadata (should've done that earlier probably; got + permission to take over by welp some weeks ago) + + 01 Oct 2008; Tobias Scherbaum + lighttpd-1.4.20.ebuild: + ppc stable, bug #238180 + + 01 Oct 2008; Markus Rothe lighttpd-1.4.20.ebuild: + Stable on ppc64; bug #238180 + + 01 Oct 2008; Raúl Porcel lighttpd-1.4.20.ebuild: + alpha/ia64/x86 stable wrt #238180 + + 30 Sep 2008; Jeroen Roovers lighttpd-1.4.20.ebuild: + Stable for HPPA (bug #238180). + + 30 Sep 2008; Ferris McCormick lighttpd-1.4.20.ebuild: + Sparc stable --- Security Bug #238180 --- all tests good. + + 30 Sep 2008; Christian Hoffmann + lighttpd-1.4.20.ebuild: + stable on amd64 wrt security bug 238180 + +*lighttpd-1.4.20 (30 Sep 2008) + + 30 Sep 2008; Christian Hoffmann + +files/1.4.20/03_all_lighttpd-1.4.11-errorlog-pipe.diff, + -lighttpd-1.4.16.ebuild, -lighttpd-1.4.18.ebuild, + -lighttpd-1.4.18-r1.ebuild, -lighttpd-1.4.18-r2.ebuild, + -lighttpd-1.4.18-r3.ebuild, -lighttpd-1.4.19.ebuild, + +lighttpd-1.4.20.ebuild: + version bump to 1.4.20, including fixes for the security issues outlined + in bug 238180; removing old + + 22 Aug 2008; Doug Goldstein metadata.xml: + add GLEP 56 USE flag desc from use.local.desc + + 03 Apr 2008; Tobias Scherbaum + lighttpd-1.4.19-r2.ebuild: + ppc stable, bug #214892 + + 02 Apr 2008; Markus Meier ChangeLog: + amd64/x86 stable, security bug #214892 + + 02 Apr 2008; Markus Rothe lighttpd-1.4.19-r2.ebuild: + Stable on ppc64; bug #214892 + + 01 Apr 2008; Raúl Porcel lighttpd-1.4.19-r2.ebuild: + alpha/ia64/sparc stable wrt security #214892 + + 01 Apr 2008; Jeroen Roovers lighttpd-1.4.19-r2.ebuild: + Stable for HPPA (bug #214892). + +*lighttpd-1.4.19-r2 (31 Mar 2008) + + 31 Mar 2008; Thilo Bangert + +files/1.4.19-r2/03_all_lighttpd-1.4.11-errorlog-pipe.diff, + +files/1.4.19-r2/04_all_lighttpd-1.4.13-deprecated-ldap-api.diff, + +files/1.4.19-r2/07_all_lighttpd-1.4.19-closing_foreign_ssl_connections-do + s-taketwo.diff, + +files/1.4.19-r2/05_all_lighttpd-1.4.19-force_lowercase_filenames_in_mod_u + serdir.diff, +lighttpd-1.4.19-r2.ebuild: + new patch for ssl issue in bug 214892 + + 26 Mar 2008; Markus Meier lighttpd-1.4.19-r1.ebuild: + revert stable for amd64/x86, bug #214892 (comment 4) + + 26 Mar 2008; Markus Meier lighttpd-1.4.19-r1.ebuild: + amd64/x86 stable, security bug #214892 + +*lighttpd-1.4.19-r1 (26 Mar 2008) + + 26 Mar 2008; Thilo Bangert + +files/1.4.19-r1/03_all_lighttpd-1.4.11-errorlog-pipe.diff, + +files/1.4.19-r1/04_all_lighttpd-1.4.13-deprecated-ldap-api.diff, + +files/1.4.19-r1/06_all_lighttpd-1.4.19-closing_foreign_ssl_connections-do + s.diff, + +files/1.4.19-r1/05_all_lighttpd-1.4.19-force_lowercase_filenames_in_mod_u + serdir.diff, +lighttpd-1.4.19-r1.ebuild: + bump - fixes security bug# 214892 + + 26 Mar 2008; Raúl Porcel lighttpd-1.4.19.ebuild: + alpha/ia64/sparc stable wrt security #213164 + + 26 Mar 2008; Markus Rothe lighttpd-1.4.19.ebuild: + Stable on ppc64; bug #213164 + +*lighttpd-1.4.19 (25 Mar 2008) + + 25 Mar 2008; Thilo Bangert + +files/1.4.19/03_all_lighttpd-1.4.11-errorlog-pipe.diff, + +files/1.4.19/04_all_lighttpd-1.4.13-deprecated-ldap-api.diff, + +files/1.4.19/05_all_lighttpd-1.4.19-force_lowercase_filenames_in_mod_user + dir.diff, +lighttpd-1.4.19.ebuild: + version bump - fixess bug #206333, bug #213114 and security bug #213164 + + 21 Mar 2008; Tobias Scherbaum + lighttpd-1.4.18-r3.ebuild: + ppc stable, bug #212930 + + 11 Mar 2008; Steve Dibb lighttpd-1.4.18-r3.ebuild: + amd64 stable, bug 212930 + + 11 Mar 2008; Raúl Porcel lighttpd-1.4.18-r3.ebuild: + alpha/ia64/sparc stable wrt #212930 + + 11 Mar 2008; Christian Faulhammer + lighttpd-1.4.18-r3.ebuild: + stable x86, security bug 212930 + + 11 Mar 2008; Markus Rothe lighttpd-1.4.18-r3.ebuild: + Stable on ppc64; bug #212930 + + 11 Mar 2008; Jeroen Roovers lighttpd-1.4.18-r3.ebuild: + Stable for HPPA (bug #212930). + +*lighttpd-1.4.18-r3 (10 Mar 2008) + + 10 Mar 2008; Thilo Bangert + +files/1.4.18-r3/03_all_lighttpd-1.4.11-errorlog-pipe.diff, + +files/1.4.18-r3/04_all_lighttpd-1.4.13-deprecated-ldap-api.diff, + +files/1.4.18-r3/06_all_lighttpd-1.4.18-mod_cgi_source_disclosure-changese + t-211956.diff, +files/1.4.18-r3/05_all_lighttpd-fix-DoS.diff, + +files/1.4.18-r3/07_all_lighttpd-1.4.18-mod_userdir-information_disclosure + .diff, +lighttpd-1.4.18-r3.ebuild: + bump for security bug #212930 + + 04 Mar 2008; Tobias Scherbaum + lighttpd-1.4.18-r2.ebuild: + ppc stable, bug #211956 + + 03 Mar 2008; lighttpd-1.4.18-r2.ebuild: + amd64 stable, security bug #211956. + + 03 Mar 2008; Raúl Porcel lighttpd-1.4.18-r2.ebuild: + alpha/ia64/sparc/x86 stable wrt security #211956 + + 03 Mar 2008; Jeroen Roovers lighttpd-1.4.18-r2.ebuild: + Stable for HPPA (bug #211956). + + 02 Mar 2008; Markus Rothe lighttpd-1.4.18-r2.ebuild: + Stable on ppc64; bug #211956 + +*lighttpd-1.4.18-r2 (01 Mar 2008) + + 01 Mar 2008; Thilo Bangert + +files/1.4.18-r2/03_all_lighttpd-1.4.11-errorlog-pipe.diff, + +files/1.4.18-r2/04_all_lighttpd-1.4.13-deprecated-ldap-api.diff, + +files/1.4.18-r2/06_all_lighttpd-1.4.18-mod_cgi_source_disclosure-changese + t-211956.diff, +files/1.4.18-r2/05_all_lighttpd-fix-DoS.diff, + +lighttpd-1.4.18-r2.ebuild: + version bump - fix source disclosure - bug #211956 + + 26 Feb 2008; lighttpd-1.4.18-r1.ebuild: + Stable on amd64; bug 211230 + + 26 Feb 2008; Tobias Scherbaum + lighttpd-1.4.18-r1.ebuild: + ppc stable, bug #211230 + + 26 Feb 2008; Raúl Porcel lighttpd-1.4.18-r1.ebuild: + alpha/ia64/sparc stable wrt #211230 + + 26 Feb 2008; Markus Rothe lighttpd-1.4.18-r1.ebuild: + Stable on ppc64; bug #211230 + + 26 Feb 2008; Jeroen Roovers lighttpd-1.4.18-r1.ebuild: + Stable for HPPA (bug #211230). + + 26 Feb 2008; lighttpd-1.4.18-r1.ebuild: + Stable on x86 (bug #211230) + +*lighttpd-1.4.18-r1 (24 Feb 2008) + + 24 Feb 2008; + +files/1.4.18-r1/03_all_lighttpd-1.4.11-errorlog-pipe.diff, + +files/1.4.18-r1/04_all_lighttpd-1.4.13-deprecated-ldap-api.diff, + +files/1.4.18-r1/05_all_lighttpd-fix-DoS.diff, +lighttpd-1.4.18-r1.ebuild: + Patch and revbump for security; bug 211230 + + 12 Feb 2008; Thilo Bangert + -files/lighttpd-1.3.10.initd, -files/lighttpd-1.3.11-gentoo.diff, + -files/lighttpd-1.3.13-ldap-binddn.diff, + -files/lighttpd-1.3.13-no-mysql-means-no-mysql.diff, + -files/lighttpd-1.3.13-php.diff, -lighttpd-1.3.16.ebuild: + remove insecure version - bug #189786 + + 26 Jan 2008; Thilo Bangert lighttpd-1.4.16.ebuild, + lighttpd-1.4.18.ebuild: + fix quoting + + 12 Oct 2007; Thilo Bangert + -files/1.4.13/03_all_lighttpd-1.4.11-errorlog-pipe.diff, + -files/1.4.15/03_all_lighttpd-1.4.11-errorlog-pipe.diff, + -files/1.4.15-r1/03_all_lighttpd-1.4.11-errorlog-pipe.diff, + -files/lighttpd.initd-1.4.13-r1, -files/lighttpd.initd-1.4.13-r2, + -files/1.4.13/01_all_lighttpd-1.4.13-99cpu-fix.diff, + -files/1.4.11/01_all_r1046.mod_compress.c-fixes.diff, + -files/1.4.13/04_all_lighttpd-1.4.13-deprecated-ldap-api.diff, + -files/1.4.15/04_all_lighttpd-1.4.13-deprecated-ldap-api.diff, + -files/1.4.15-r1/04_all_lighttpd-1.4.13-deprecated-ldap-api.diff, + -files/1.4.13/02_all_lighttpd-1.4.13-fcgi-auth-type.diff, + -files/1.4.11/02_all_r1057_fix_If-Modified-Since-ETag.diff, + -files/1.4.15-r1/07_all_lighttpd-1.4.15-duplicated_headers_with_folding_cr + ash.diff, -files/1.4.11/03_all_r1095_fix_stalling_SSL_POST_requests.diff, + -files/1.4.15-r1/08_all_lighttpd-1.4.15-mod_acces_bypass.diff, + -files/1.4.11/21_all_mod_scgi_segfault.diff, + -files/1.4.15-r1/09_all_lighttpd-1.4.15-mod_fastcgi_local_dos.diff, + -files/1.4.11/22_all_bug606_fix_SSI_echo.diff, + -files/1.4.15-r1/10_all_lighttpd-1.4.15-mod_scgi_crash.diff, + -files/1.4.11/23_all_mod_ssi_gcc-4.1.1_compile_fix.diff, + -lighttpd-1.4.11.ebuild, -lighttpd-1.4.13.ebuild, + -lighttpd-1.4.13-r1.ebuild, -lighttpd-1.4.13-r2.ebuild, + -lighttpd-1.4.13-r3.ebuild, -lighttpd-1.4.15.ebuild, + -lighttpd-1.4.15-r1.ebuild: + security cleanup - bug #191912 and others + + 13 Sep 2007; Jeroen Roovers lighttpd-1.4.18.ebuild: + Stable for SPARC (bug #191912). + + 13 Sep 2007; Markus Rothe lighttpd-1.4.18.ebuild: + Stable on ppc64; bug #191912 + + 10 Sep 2007; Tobias Scherbaum + lighttpd-1.4.18.ebuild: + ppc stable, bug #191912 + + 10 Sep 2007; Jeroen Roovers lighttpd-1.4.18.ebuild: + Stable for HPPA (bug #191912). + + 10 Sep 2007; Raúl Porcel lighttpd-1.4.18.ebuild: + alpha/ia64 stable wrt security #191912 + +*lighttpd-1.4.18 (09 Sep 2007) + + 09 Sep 2007; Peter Weller + +files/1.4.18/03_all_lighttpd-1.4.11-errorlog-pipe.diff, + +files/1.4.18/04_all_lighttpd-1.4.13-deprecated-ldap-api.diff, + +lighttpd-1.4.18.ebuild: + Security bump wrt bug 191912 - straight to stable on amd64 and x86 by + request of angelos and jokey, respectively + + 26 Aug 2007; Thilo Bangert files/lighttpd.confd: + fix note about export SHELL, which is only used by include_shell config option + + 22 Aug 2007; Thilo Bangert lighttpd-1.4.16.ebuild: + use latest init.d script - fixes bug #189698. + + 15 Aug 2007; Jeroen Roovers lighttpd-1.4.16.ebuild: + Stable for HPPA (bug #185442). + + 14 Aug 2007; Tobias Scherbaum + lighttpd-1.4.16.ebuild: + ppc stable, bug #185442 + + 12 Aug 2007; Steve Dibb lighttpd-1.4.16.ebuild: + amd64 stable, security bug 185442 + + 10 Aug 2007; Markus Rothe lighttpd-1.4.16.ebuild: + Stable on ppc64; bug #185442 + + 10 Aug 2007; Raúl Porcel lighttpd-1.4.16.ebuild: + alpha/ia64 stable wrt #185442 + + 10 Aug 2007; Christian Faulhammer + lighttpd-1.4.16.ebuild: + stable x86, security bug 185442 + + 09 Aug 2007; Gustavo Zacarias + lighttpd-1.4.16.ebuild: + Stable on sparc wrt security #185442 + +*lighttpd-1.4.16 (05 Aug 2007) + + 05 Aug 2007; Thilo Bangert + +files/1.4.16/03_all_lighttpd-1.4.11-errorlog-pipe.diff, + +files/1.4.16/04_all_lighttpd-1.4.13-deprecated-ldap-api.diff, + +lighttpd-1.4.16.ebuild: + version bump + + 31 Jul 2007; Christoph Mende + lighttpd-1.4.15-r1.ebuild: + Stable on amd64 wrt security bug #185442 + + 27 Jul 2007; Tobias Scherbaum + lighttpd-1.4.15-r1.ebuild: + ppc stable, bug #185442 + + 25 Jul 2007; Raúl Porcel lighttpd-1.4.15-r1.ebuild: + alpha/ia64 stable wrt security #185442 + + 25 Jul 2007; Christian Faulhammer + lighttpd-1.4.15-r1.ebuild: + stable x86, security bug 185442 + + 20 Jul 2007; Gustavo Zacarias + lighttpd-1.4.15-r1.ebuild: + Stable on sparc wrt security #185442 + + 20 Jul 2007; Jeroen Roovers lighttpd-1.4.15-r1.ebuild: + Stable for HPPA (bug #185442). + + 20 Jul 2007; Markus Rothe lighttpd-1.4.15-r1.ebuild: + Stable on ppc64; bug #185442 + + 20 Jul 2007; Gustavo Zacarias + lighttpd-1.4.15-r1.ebuild: + And use PVR too + + 20 Jul 2007; Gustavo Zacarias + +files/1.4.15-r1/03_all_lighttpd-1.4.11-errorlog-pipe.diff, + +files/1.4.15-r1/04_all_lighttpd-1.4.13-deprecated-ldap-api.diff, + -files/1.4.15/07_all_lighttpd-1.4.15-duplicated_headers_with_folding_crash + .diff, + +files/1.4.15-r1/07_all_lighttpd-1.4.15-duplicated_headers_with_folding_cr + ash.diff, -files/1.4.15/08_all_lighttpd-1.4.15-mod_acces_bypass.diff, + +files/1.4.15-r1/08_all_lighttpd-1.4.15-mod_acces_bypass.diff, + -files/1.4.15/09_all_lighttpd-1.4.15-mod_fastcgi_local_dos.diff, + +files/1.4.15-r1/09_all_lighttpd-1.4.15-mod_fastcgi_local_dos.diff, + -files/1.4.15/10_all_lighttpd-1.4.15-mod_scgi_crash.diff, + +files/1.4.15-r1/10_all_lighttpd-1.4.15-mod_scgi_crash.diff, + lighttpd-1.4.15-r1.ebuild: + Doh, my bad, make 1.4.15-r1 patches sepparate + +*lighttpd-1.4.15-r1 (20 Jul 2007) + + 20 Jul 2007; Gustavo Zacarias + +files/1.4.15/07_all_lighttpd-1.4.15-duplicated_headers_with_folding_crash + .diff, +files/1.4.15/08_all_lighttpd-1.4.15-mod_acces_bypass.diff, + +files/1.4.15/09_all_lighttpd-1.4.15-mod_fastcgi_local_dos.diff, + +files/1.4.15/10_all_lighttpd-1.4.15-mod_scgi_crash.diff, + +lighttpd-1.4.15-r1.ebuild: + Revbump with security fixes #185442 + + 15 Jul 2007; Christian Heim metadata.xml: + Assigning to www-servers, as beu is being retired (#66608). + + 25 Apr 2007; Alexander Færøy lighttpd-1.4.15.ebuild: + Marked ~mips. + + 18 Apr 2007; Chris Gianelloni + lighttpd-1.4.15.ebuild: + Stable on ppc wrt bug #174043. + + 17 Apr 2007; Jose Luis Rivero lighttpd-1.4.15.ebuild: + Stable on alpha wrt security #174043 + + 16 Apr 2007; Gustavo Zacarias + lighttpd-1.4.15.ebuild: + Stable on sparc wrt security #174043 + + 15 Apr 2007; Raúl Porcel lighttpd-1.4.15.ebuild: + ia64 stable wrt security bug 174043 + + 15 Apr 2007; Andrej Kacian lighttpd-1.4.15.ebuild: + Stable on x86, security bug #174043. + + 15 Apr 2007; Peter Weller lighttpd-1.4.15.ebuild: + Stable on amd64 wrt bug 174043 + + 15 Apr 2007; Markus Rothe lighttpd-1.4.15.ebuild: + Stable on ppc64; bug #174043 + + 15 Apr 2007; Thilo Bangert lighttpd-1.4.15.ebuild: + use .13-r2 init script to fix backgrouding issues + + 14 Apr 2007; Jeroen Roovers lighttpd-1.4.15.ebuild: + Stable for HPPA (bug #174043). + +*lighttpd-1.4.15 (14 Apr 2007) + + 14 Apr 2007; Thilo Bangert + +files/1.4.15/03_all_lighttpd-1.4.11-errorlog-pipe.diff, + +files/1.4.15/04_all_lighttpd-1.4.13-deprecated-ldap-api.diff, + +lighttpd-1.4.15.ebuild: + security version bump - bug #174043 + +*lighttpd-1.4.13-r3 (10 Apr 2007) + + 10 Apr 2007; Robin H. Johnson + +files/lighttpd.initd-1.4.13-r3, + +files/1.4.13/04_all_lighttpd-1.4.13-deprecated-ldap-api.diff, + lighttpd-1.4.13-r1.ebuild, lighttpd-1.4.13-r2.ebuild, + +lighttpd-1.4.13-r3.ebuild: + Bug #174015 - clean up pidfile usage in init script. (No Bug #) - fix LDAP + usage, patch from {dev-zero,cardoe}@gentoo.org. + + 04 Apr 2007; Fernando J. Pereda + lighttpd-1.4.13-r2.ebuild: + Re-add ~alpha keyword as per bug #155518 + + 02 Apr 2007; Roy Marples files/spawn-fcgi.initd: + Remove bashisms from spawn-fcgi + + 01 Apr 2007; Robin H. Johnson + +files/conf/mod_fastcgi.conf-1.4.13-r2, lighttpd-1.4.13-r2.ebuild: + Bug #170951, use UNIX sockets for fastcgi processes instead of TCP sockets, + to fix the cases where the fastcgi processes are not respawned on graceful. + +*lighttpd-1.4.13-r2 (01 Apr 2007) + + 01 Apr 2007; Robin H. Johnson + +files/lighttpd.initd-1.4.13-r2, +lighttpd-1.4.13-r2.ebuild: + Bug #168865, improved init.d script for s-s-d handling and other bits. + + 26 Mar 2007; Christian Faulhammer + lighttpd-1.4.13-r1.ebuild: + stable x86, bug 168582 + + 25 Mar 2007; Raúl Porcel lighttpd-1.4.13-r1.ebuild: + Add ~ia64 + + 25 Mar 2007; Tobias Scherbaum + lighttpd-1.4.13-r1.ebuild: + Stable on ppc wrt bug #168582. + + 17 Mar 2007; Steve Dibb lighttpd-1.4.13-r1.ebuild: + amd64 stable, bug 168582 + + 15 Mar 2007; Jeroen Roovers lighttpd-1.4.13-r1.ebuild: + Stable for HPPA (bug #168582). + + 15 Mar 2007; Markus Rothe lighttpd-1.4.13-r1.ebuild: + Stable on ppc64; bug #168582 + + 13 Mar 2007; Gustavo Zacarias + lighttpd-1.4.13-r1.ebuild: + Stable on sparc wrt #168582 + + 07 Feb 2007; Robin H. Johnson lighttpd-1.4.13.ebuild, + lighttpd-1.4.13-r1.ebuild: + Remove ~alpha, ~arm, ~ia64, ~mips pending resolution of bug #155518. + + 19 Jan 2007; Alexander H. Færøy + lighttpd-1.4.11.ebuild: + Stable on IA64. + + 09 Jan 2007; Robin H. Johnson + +files/1.4.13/03_all_lighttpd-1.4.11-errorlog-pipe.diff, + files/lighttpd.initd-1.4.13-r1, + +files/1.4.13/01_all_lighttpd-1.4.13-99cpu-fix.diff, + -files/1.4.13/01_lighttpd-1.4.13-99cpu-fix.diff, + -files/1.4.13/03_lighttpd-1.4.13-errorlog-pipe.diff, + +files/1.4.13/02_all_lighttpd-1.4.13-fcgi-auth-type.diff, + -files/1.4.13/02_lighttpd-1.4.13-fcgi-auth-type.diff, + lighttpd-1.4.13-r1.ebuild: + The patches were not applied like there were supposed to be! Also improve + initd to avoid the extra exec. + +*lighttpd-1.4.13-r1 (09 Jan 2007) + + 09 Jan 2007; Robin H. Johnson + +files/lighttpd.initd-1.4.13-r1, + +files/1.4.13/03_lighttpd-1.4.13-errorlog-pipe.diff, + +lighttpd-1.4.13-r1.ebuild: + Fix bugs 157813, 158423, 160903, 160939. + + 09 Jan 2007; Robin H. Johnson lighttpd-1.4.13.ebuild: + Compile fix: for USE=minimal, we need to remove mod_magnet as well. + +*lighttpd-1.4.13 (07 Jan 2007) + + 07 Jan 2007; Robin H. Johnson + +files/1.4.13/01_lighttpd-1.4.13-99cpu-fix.diff, + +files/1.4.13/02_lighttpd-1.4.13-fcgi-auth-type.diff, + +lighttpd-1.4.13.ebuild: + New 1.4.13 version, pmasked for testing. + + 05 Jan 2007; Elfyn McBratney lighttpd-1.4.11.ebuild: + Set WANT_AUTO{CONF,MAKE} variables; fixes bug #160133. + + 08 Dec 2006; Elfyn McBratney lighttpd-1.4.11.ebuild: + Kill DEPEND on sys-apps/sed. + + 23 Nov 2006; Francesco Riosa lighttpd-1.4.11.ebuild: + re-keyword "ppc" stable as Tobias did + + 23 Nov 2006; Francesco Riosa lighttpd-1.3.16.ebuild, + lighttpd-1.4.11.ebuild: + dev-db/mysql => virtual/mysql + + 23 Nov 2006; Tobias Scherbaum + lighttpd-1.4.11.ebuild: + ppc stable, bug #155981 + + 05 Nov 2006; Thilo Bangert files/lighttpd.initd: + make lighttpd detach properly (added --background) + see bug #152709 + + 26 Oct 2006; Roy Marples lighttpd-1.4.11.ebuild: + Added ~sparc-fbsd keyword. + + 21 Oct 2006; Thomas Cort lighttpd-1.4.11.ebuild: + Stable on alpha. + + 07 Oct 2006; Thilo Bangert files/lighttpd.confd, + files/lighttpd.initd: + put init script configuration variables in conf.d + fixes bug #150376 - thanks Gabi Shaar + + 29 Sep 2006; Thilo Bangert +files/lighttpd.confd, + lighttpd-1.4.11.ebuild: + add SHELL to startup script - fixes #140349 + + 05 Sep 2006; Thomas Cort lighttpd-1.4.11.ebuild: + Added ~alpha keyword wrt Bug #123436. + + 25 Jul 2006; Thilo Bangert lighttpd-1.4.11.ebuild: + dont install COPYING INSTALL + + 23 Jun 2006; Gustavo Zacarias + lighttpd-1.4.11.ebuild: + Stable on sparc + + 07 Jun 2006; Thomas Cort lighttpd-1.4.11.ebuild: + Stable on amd64 wrt security Bug #123022. + + 07 Jun 2006; Mark Loeser lighttpd-1.4.11.ebuild: + Stable on x86; bug #123022 + + 06 Jun 2006; Thilo Bangert + +files/1.4.11/23_all_mod_ssi_gcc-4.1.1_compile_fix.diff, + lighttpd-1.4.11.ebuild: + fix compile on gcc-4.1.1 (bug #135317) + add warning about the need to re-merge when switching + from app-admin/fam to app-admin/gamin and vice versa + + 03 Jun 2006; Thilo Bangert + -files/1.4.10/05_all_r996_fallback_to_madvise.diff, + -files/lighttpd-1.3.13-pam-name.diff, + -files/1.4.10/06_all_r997_fastcgi_fixes.diff, + -files/lighttpd-1.3.13-valid-user.diff, + -files/1.4.10/07_all_r998_sendfile_fixes.diff, + -files/1.4.10/01_all_r990_mod_cgi_dont_reset_physical_path.diff, + -files/1.4.10/08_all_r999_mod_cgi_terminate.diff, + -files/1.4.10/03_all_r992_posix_fadvise_2.4.x.diff, + -files/1.4.10/09_all_r1000_sendfile_compile_fix.diff, + -files/lighttpd-1.3.13-zope-deserves-lovins-too.diff, + -files/1.4.10/10_all_r1001_mod_auth_errormsg_fix.diff, + -files/1.4.10/11_all_r1002_var_and_env_docs.diff, + -files/1.4.10/02_all_r991_posix_fadvise.diff, + -files/1.4.10/04_all_r994_remove_xopen_and_bsd_source_defines.diff, + -files/1.4.10/12_all_r1003_mod_fastcgi_doc_fix.diff, + -files/1.4.10/13_all_r1006_mod_cgi_close_unused_pipe_fds.diff, + -files/1.4.10/14_all_r1007_mod_alias_lowercase_support.diff, + -lighttpd-1.3.13-r3.ebuild, -lighttpd-1.4.7.ebuild, + -lighttpd-1.4.8.ebuild, -lighttpd-1.4.10-r1.ebuild, + -lighttpd-1.4.10-r2.ebuild: + punt old / vulnerable / experimental versions + +*lighttpd-1.4.11-r1 (01 Jun 2006) + + 01 Jun 2006; Thilo Bangert + +files/1.4.11/01_all_r1046.mod_compress.c-fixes.diff, + -files/1.4.11/01_r1046.diff_mod_compress.c-fixes.diff, + +files/1.4.11/02_all_r1057_fix_If-Modified-Since-ETag.diff, + -files/1.4.11/02_r1057_fix_If-Modified-Since-ETag.diff, + +files/1.4.11/03_all_r1095_fix_stalling_SSL_POST_requests.diff, + -files/1.4.11/03_r1095_fix_stalling_SSL_POST_requests.diff, + -files/1.4.11/04_r1116_fix_env_conf_segfault.diff, + +files/1.4.11/21_all_mod_scgi_segfault.diff, + -files/1.4.11/21_mod_scgi_segfault.diff, + +files/1.4.11/22_all_bug606_fix_SSI_echo.diff, + -files/1.4.11/22_bug606_fix_SSI_echo.diff, files/lighttpd.initd, + +lighttpd-1.4.11-r1.ebuild: + fix naming of patches - remove 04_diff + change startup script to 'need famd' in cases where app-admin/fam + provides virtual/fam + + 01 Jun 2006; Steev Klimaszewski + lighttpd-1.4.10-r2.ebuild, lighttpd-1.4.11.ebuild: + Change the fam useflag to strictly depend on app-admin/gamin since that is + the preferred app for fam these days, not to mention that famd needs to die. + This should fix bug 123022 to stablize lighttpd 1.4.10-r2. Changed the + dependency in both 1.4.10-r2 and 1.4.11. + + 30 May 2006; Markus Rothe lighttpd-1.4.11.ebuild: + Stable on ppc64; bug #123022 + + 30 May 2006; Thilo Bangert files/lighttpd.initd, + files/lighttpd.logrotate: + add reload() to init script - use it in the logrotate script + bug 125241 - thanks david somers + +*lighttpd-1.4.11 (30 May 2006) + + 30 May 2006; Thilo Bangert + +files/1.4.11/01_r1046.diff_mod_compress.c-fixes.diff, + +files/1.4.11/02_r1057_fix_If-Modified-Since-ETag.diff, + +files/1.4.11/03_r1095_fix_stalling_SSL_POST_requests.diff, + +files/1.4.11/04_r1116_fix_env_conf_segfault.diff, + +files/1.4.11/21_mod_scgi_segfault.diff, + +files/1.4.11/22_bug606_fix_SSI_echo.diff, +lighttpd-1.4.11.ebuild: + version bump + + 24 May 2006; Brent Baude lighttpd-1.4.8.ebuild: + Stabilizing lighttpd-1.4.8 for ppc64 to satisfy cacti dependancy + + 05 May 2006; Diego Pettenò + lighttpd-1.4.10-r2.ebuild: + Readd ~x86-fbsd keyword and move enewuser/enewgroup calls in pkg_setup. + + 04 May 2006; J. Alberto Suárez López + +lighttpd-1.4.10-r2.ebuild: + Fixed permissions problem. #123022 + +*lighttpd-1.4.10-r2 (04 May 2006) + + 04 May 2006; J. Alberto Suárez López + +lighttpd-1.4.10-r2.ebuild: + Fixed permissions problem. #123022 + + 27 Apr 2006; Alec Warner Manifest: + Fixing SHA256 digest, pass four + + 27 Apr 2006; Luca Longinotti + lighttpd-1.3.13-r3.ebuild: + Fix bug #130980, as QA wants this fixed quickly. + + 15 Apr 2006; Diego Pettenò + lighttpd-1.4.10-r1.ebuild: + Add ~x86-fbsd keyword. + + 30 Mar 2006; Aron Griffis lighttpd-1.4.10-r1.ebuild: + Mark 1.4.10-r1 ~ia64 + + 20 Mar 2006; Luca Longinotti lighttpd-1.3.16.ebuild: + Fix bug #121653 on stable releases. + + 02 Mar 2006; Aaron Walker lighttpd-1.4.10-r1.ebuild: + Add sed to fix typo in mod_cml docs for bug 124590. + + 27 Feb 2006; Aaron Walker + files/1.4.10/14_all_r1007_mod_alias_lowercase_support.diff, + lighttpd-1.4.10-r1.ebuild: + Add missing eautoreconf call since the latest patchset modifies autotools + stuff; also fix upstream typo in + 14_all_r1007_mod_alias_lowercase_support.diff. + +*lighttpd-1.4.10-r1 (26 Feb 2006) + + 26 Feb 2006; Aaron Walker + +files/1.4.10/01_all_r990_mod_cgi_dont_reset_physical_path.diff, + +files/1.4.10/03_all_r992_posix_fadvise_2.4.x.diff, + +files/1.4.10/07_all_r998_sendfile_fixes.diff, + +files/1.4.10/02_all_r991_posix_fadvise.diff, + +files/1.4.10/04_all_r994_remove_xopen_and_bsd_source_defines.diff, + +files/1.4.10/05_all_r996_fallback_to_madvise.diff, + +files/1.4.10/06_all_r997_fastcgi_fixes.diff, + +files/1.4.10/08_all_r999_mod_cgi_terminate.diff, + +files/1.4.10/09_all_r1000_sendfile_compile_fix.diff, + +files/1.4.10/10_all_r1001_mod_auth_errormsg_fix.diff, + +files/1.4.10/11_all_r1002_var_and_env_docs.diff, + +files/1.4.10/12_all_r1003_mod_fastcgi_doc_fix.diff, + +files/1.4.10/13_all_r1006_mod_cgi_close_unused_pipe_fds.diff, + +files/1.4.10/14_all_r1007_mod_alias_lowercase_support.diff, + -lighttpd-1.4.10.ebuild, +lighttpd-1.4.10-r1.ebuild: + Revision bump; added a sleu of upstream patches to fix various issues. + + 13 Feb 2006; Michael Cummings + lighttpd-1.4.7.ebuild, lighttpd-1.4.8.ebuild, lighttpd-1.4.10.ebuild: + Virtuals for some perl-core deps + +*lighttpd-1.4.10 (10 Feb 2006) + + 10 Feb 2006; Aaron Walker +lighttpd-1.4.10.ebuild: + Version bump. + + 17 Dec 2005; Markus Rothe lighttpd-1.4.8.ebuild: + Added ~ppc64 + + 15 Dec 2005; Aaron Walker -lighttpd-1.4.6.ebuild: + Err forgot to actually rm 1.4.6. + +*lighttpd-1.4.8 (15 Dec 2005) + + 15 Dec 2005; Aaron Walker +lighttpd-1.4.8.ebuild: + Version bump; tidy 1.4.6. + + 24 Nov 2005; Simon Stelling lighttpd-1.3.16.ebuild: + stable on amd64 + +*lighttpd-1.4.7 (03 Nov 2005) + + 03 Nov 2005; Aaron Walker +lighttpd-1.4.7.ebuild: + Version bump. + + 12 Oct 2005; Aaron Walker files/lighttpd.initd: + 'use slapd' in init script so that slapd gets started before lighttpd if + it's being used. + +*lighttpd-1.4.6 (10 Oct 2005) + + 10 Oct 2005; Aaron Walker -lighttpd-1.4.3.ebuild, + -lighttpd-1.4.5.ebuild, +lighttpd-1.4.6.ebuild: + Version bump; tidy previous 1.4.x ebuilds. + +*lighttpd-1.4.5 (03 Oct 2005) + + 03 Oct 2005; Aaron Walker + -files/1.4.4/01_all_r716-fix-remoteip-cache-keepalive.diff, + -files/1.4.4/03_all_r722-fix-no-global-mysql-segv.diff, + -files/1.4.4/07_all_r726-sce-set-if-HANDLER_GO_ON.diff, + -files/1.4.4/04_all_r723-fix-mod_ssi-inf-loop.diff, + -files/1.4.4/08_all_r727-fix-another-error-msg-segv.diff, + -files/1.4.4/02_all_r721-add-case-302.diff, + -files/1.4.4/05_all_r724-fix-error-msg-segv.diff, + -files/1.4.4/06_all_r725-fix-NULL-dereference.diff, + -files/1.4.4/09_all_r728-handle-written-correctly.diff, + -files/1.4.4/10_all_r729-display-content_ndx.diff, + -files/1.4.4/11_all_r732-dont-starve-waiting-conns.diff, + -files/1.4.4/13_all_r745-fix-64bit-crc32.diff, + -files/1.4.4/12_all_r736-fix-max-request-size.diff, + -lighttpd-1.4.4-r2.ebuild, +lighttpd-1.4.5.ebuild: + Version bump; removed 1.4.4-r2 and its plethora of patches. + +*lighttpd-1.4.4-r2 (29 Sep 2005) + + 29 Sep 2005; Aaron Walker + +files/1.4.4/07_all_r726-sce-set-if-HANDLER_GO_ON.diff, + +files/1.4.4/09_all_r728-handle-written-correctly.diff, + +files/1.4.4/11_all_r732-dont-starve-waiting-conns.diff, + +files/1.4.4/13_all_r745-fix-64bit-crc32.diff, + +files/1.4.4/08_all_r727-fix-another-error-msg-segv.diff, + +files/1.4.4/10_all_r729-display-content_ndx.diff, + +files/1.4.4/12_all_r736-fix-max-request-size.diff, + -lighttpd-1.4.4-r1.ebuild, +lighttpd-1.4.4-r2.ebuild: + Revision bump; more upstream fixes. + + 22 Sep 2005; Aaron Walker + -files/1.4.3/01_all_r716-fix-remoteip-cache-keepalive.diff, + -files/1.4.3/03_all_r722-fix-no-global-mysql-segv.diff, + -files/1.4.3/05_all_r724-fix-error-msg-segv.diff, + +files/1.4.4/01_all_r716-fix-remoteip-cache-keepalive.diff, + -files/1.4.3/02_all_r721-add-case-302.diff, + -files/1.4.3/04_all_r723-fix-mod_ssi-inf-loop.diff, + -files/1.4.3/06_all_r725-fix-NULL-dereference.diff, + +files/1.4.4/03_all_r722-fix-no-global-mysql-segv.diff, + +files/1.4.4/05_all_r724-fix-error-msg-segv.diff, + +files/1.4.4/02_all_r721-add-case-302.diff, + +files/1.4.4/04_all_r723-fix-mod_ssi-inf-loop.diff, + +files/1.4.4/06_all_r725-fix-NULL-dereference.diff: + Naming the patch directory correctly would help. + +*lighttpd-1.4.4-r1 (21 Sep 2005) + + 21 Sep 2005; Aaron Walker + +files/1.4.3/01_all_r716-fix-remoteip-cache-keepalive.diff, + +files/1.4.3/03_all_r722-fix-no-global-mysql-segv.diff, + +files/1.4.3/04_all_r723-fix-mod_ssi-inf-loop.diff, + +files/1.4.3/02_all_r721-add-case-302.diff, + +files/1.4.3/05_all_r724-fix-error-msg-segv.diff, + +files/1.4.3/06_all_r725-fix-NULL-dereference.diff, + -lighttpd-1.4.4.ebuild, +lighttpd-1.4.4-r1.ebuild: + Revision bump; add patches from upstream to fix various bugs. + + 21 Sep 2005; Gustavo Zacarias lighttpd-1.4.3.ebuild: + Keyworded ~sparc, makes ciaranm and geoman happy + +*lighttpd-1.4.4 (17 Sep 2005) + + 17 Sep 2005; Aaron Walker +lighttpd-1.4.4.ebuild: + Version bump. + + 14 Sep 2005; Aaron Walker lighttpd-1.4.3.ebuild: + Update php depend for bug 102863. + + 01 Sep 2005; Aaron Walker files/lighttpd.initd: + Add '--signal 2' to start-stop-daemon options in init script to take + advantage of 1.4.3's new graceful shutdown on SIGINT. + +*lighttpd-1.4.3 (01 Sep 2005) + + 01 Sep 2005; Aaron Walker + -files/1.4.1/01_all_any-fam.diff, + -files/1.4.1/04_all_mod_cgi-create-env-once.diff, + -files/1.4.1/02_all_optional_pcre.diff, + -files/1.4.1/05_all_fix_array_merging.diff, + -files/1.4.1/03_all_mod_cgi-wait.diff, + -files/1.4.1/06_all_check-for-waiting-write.diff, + -files/1.4.1/07_all_fix-dst_addr_buf-leak.diff, + -files/1.4.1/08_all_doc-updates.diff, + -files/1.4.1/09_all_lfs-range-requests.diff, + -files/1.4.1/10_all_stat_cache_init_after_setuid.diff, + files/conf/lighttpd.conf, files/lighttpd.initd, lighttpd-1.3.16.ebuild, + -lighttpd-1.4.1-r1.ebuild, -lighttpd-1.4.2.ebuild, +lighttpd-1.4.3.ebuild: + Version bump; fixed some init script bugs. 1.3.16 stable on x86,mips. Tidy + old ebuilds/patches. + + 31 Aug 2005; Luca Barbato lighttpd-1.4.2.ebuild: + memcache support on ppc tested + + 29 Aug 2005; Aaron Walker lighttpd-1.4.2.ebuild: + Add sedfu to fix an errant /tmp path I forgot to patch in tests/lighttpd.conf. + +*lighttpd-1.4.2 (29 Aug 2005) + + 29 Aug 2005; Aaron Walker +lighttpd-1.4.2.ebuild: + Version bump; new USE flags: bzip2, fastcgi, minimal, memcache, and rrdtool. + Upstream accepted my patches to fix the tests (writing to /tmp and using a + hardcoded module dir in /usr) so tests now work and RESTRICT=test has been + removed (bug #97661). + +*lighttpd-1.4.1-r1 (27 Aug 2005) + + 27 Aug 2005; Aaron Walker + +files/1.4.1/01_all_any-fam.diff, +files/1.4.1/03_all_mod_cgi-wait.diff, + +files/1.4.1/07_all_fix-dst_addr_buf-leak.diff, + +files/1.4.1/02_all_optional_pcre.diff, + +files/1.4.1/04_all_mod_cgi-create-env-once.diff, + +files/1.4.1/05_all_fix_array_merging.diff, + +files/1.4.1/06_all_check-for-waiting-write.diff, + +files/1.4.1/08_all_doc-updates.diff, + +files/1.4.1/09_all_lfs-range-requests.diff, + +files/1.4.1/10_all_stat_cache_init_after_setuid.diff, + files/conf/lighttpd.conf, files/conf/mime-types.conf, + +files/conf/mod_cgi.conf, files/conf/mod_fastcgi.conf, + -lighttpd-1.4.1.ebuild, +lighttpd-1.4.1-r1.ebuild: + Revision bump; added a sleu of upstream patches to fix various bugs. Added a + patch to make pcre support optional (although it's highly recommended). FAM + support now falls back to fam if gamin is unavailable, so we're now able to + use virtual/fam (fixes bug #103643). Also fixes several problems with the + custom gentoo configuration. + + 23 Aug 2005; Aaron Walker lighttpd-1.4.1.ebuild: + Don't use check-kernel.eclass. + +*lighttpd-1.4.1 (22 Aug 2005) + + 22 Aug 2005; Aaron Walker + -files/lighttpd-1.3.10-gentoo.diff, -files/lighttpd-1.3.10-php.diff, + -files/lighttpd-1.3.10-upstream.diff, + -files/lighttpd-1.4.0-stat-cache.diff, +files/conf/lighttpd.conf, + +files/conf/mime-types.conf, +files/conf/mod_fastcgi.conf, + +files/lighttpd.initd, +files/lighttpd.logrotate, metadata.xml, + -lighttpd-1.3.10-r1.ebuild, -lighttpd-1.3.15.ebuild, + -lighttpd-1.4.0.ebuild, +lighttpd-1.4.1.ebuild: + Version bump; many ebuild changes this release. Added support for USE flags: + doc,fam,gdbm,lua,webdav; Added logrotate script/rewrote init.d script. Also, + new custom gentoo configuration now located in /etc/lighttpd. Tidy old + ebuilds/patches. + + 20 Aug 2005; Aaron Walker lighttpd-1.3.10-r1.ebuild, + lighttpd-1.3.13-r3.ebuild, lighttpd-1.3.15.ebuild, lighttpd-1.3.16.ebuild, + lighttpd-1.4.0.ebuild: + Add missing depend on sys-apps/attr. + + 20 Aug 2005; Aaron Walker + +files/lighttpd-1.4.0-stat-cache.diff, lighttpd-1.3.13-r3.ebuild, + lighttpd-1.3.15.ebuild, lighttpd-1.3.16.ebuild, lighttpd-1.4.0.ebuild: + Revert previous -i flag removal as it's still necessary on certain systems + bug #103108; added patch for undefined reference in 1.4.0 when USE=xattr, + thanks to J in bug #103074. + +*lighttpd-1.4.0 (19 Aug 2005) + + 19 Aug 2005; Aaron Walker +lighttpd-1.4.0.ebuild, + -lighttpd-1.4.0.20050819.1044.ebuild: + 1.4.0 final. + +*lighttpd-1.4.0.20050819.1044 (19 Aug 2005) + + 19 Aug 2005; Aaron Walker + -files/lighttpd-1.4.0.20050817.1210-fix-config-segv.diff, + -files/lighttpd-1.4.0.20050817.1210-fix-mod_userdir.diff, + -lighttpd-1.4.0.20050817.1210-r1.ebuild, + +lighttpd-1.4.0.20050819.1044.ebuild: + Another pre-release. + +*lighttpd-1.4.0.20050817.1210-r1 (18 Aug 2005) + + 18 Aug 2005; Aaron Walker + +files/lighttpd-1.4.0.20050817.1210-fix-mod_userdir.diff, + -lighttpd-1.4.0.20050817.1210.ebuild, + +lighttpd-1.4.0.20050817.1210-r1.ebuild: + Revision bump; added patch from upstream to fix mod_userdir. + + 18 Aug 2005; Aaron Walker lighttpd-1.3.13-r3.ebuild, + lighttpd-1.3.15.ebuild, lighttpd-1.3.16.ebuild, + lighttpd-1.4.0.20050817.1210.ebuild: + Don't use -i flag to autoreconf, bug 101299. + +*lighttpd-1.4.0.20050817.1210 (17 Aug 2005) + + 17 Aug 2005; Aaron Walker + +files/lighttpd-1.4.0.20050817.1210-fix-config-segv.diff, + +lighttpd-1.4.0.20050817.1210.ebuild: + Added 1.4.0 pre-release for folks to test/play with. + + 16 Aug 2005; Aaron Walker + -files/lighttpd-1.3.16-zope-deserves-lovins-too.diff, + lighttpd-1.3.10-r1.ebuild, lighttpd-1.3.13-r3.ebuild, + lighttpd-1.3.15.ebuild, lighttpd-1.3.16.ebuild: + Removed zope patch for 1.3.16 since it should be fixed (in a different way) + in that version. Also updated all ebuilds to use -1 instead of /bin/false + when calling enewuser. + + 12 Aug 2005; Aaron Walker lighttpd-1.3.15.ebuild, + lighttpd-1.3.16.ebuild: + Add ipv6 to IUSE so that USE=-ipv6 works for uclibc, bug #102193. + + 11 Aug 2005; Aaron Walker lighttpd-1.3.15.ebuild, + lighttpd-1.3.16.ebuild: + Added ~mips. + +*lighttpd-1.3.16 (02 Aug 2005) + + 02 Aug 2005; Aaron Walker + +files/lighttpd-1.3.16-zope-deserves-lovins-too.diff, + -lighttpd-1.3.13-r1.ebuild, lighttpd-1.3.13-r3.ebuild, + -lighttpd-1.3.14-r1.ebuild, +lighttpd-1.3.16.ebuild: + Version bump; 1.3.13-r3 stable on x86; tidy old ebuilds. + +*lighttpd-1.3.15 (17 Jul 2005) + + 17 Jul 2005; Aaron Walker lighttpd-1.3.10-r1.ebuild, + lighttpd-1.3.13-r1.ebuild, lighttpd-1.3.13-r3.ebuild, + lighttpd-1.3.14-r1.ebuild, +lighttpd-1.3.15.ebuild: + Version bump. + +*lighttpd-1.3.14-r1 (12 Jul 2005) + + 12 Jul 2005; Aaron Walker + -files/lighttpd-1.3.11-php.diff, +files/lighttpd-1.3.13-php.diff, + lighttpd-1.3.13-r1.ebuild, lighttpd-1.3.13-r3.ebuild, + -lighttpd-1.3.14.ebuild, +lighttpd-1.3.14-r1.ebuild: + Revision bump. Fix php patch so that the correct bin-path is specified, bug + 98665. + + 02 Jul 2005; Aaron Walker lighttpd-1.3.10-r1.ebuild, + lighttpd-1.3.13-r1.ebuild, lighttpd-1.3.13-r3.ebuild, + lighttpd-1.3.14.ebuild: + Added RESTRICT=test until the tests are fixed. + +*lighttpd-1.3.14 (17 Jun 2005) + + 17 Jun 2005; Aaron Walker +lighttpd-1.3.14.ebuild: + Version bump. + +*lighttpd-1.3.13-r3 (06 Jun 2005) + + 06 Jun 2005; Aaron Walker + +files/lighttpd-1.3.13-ldap-binddn.diff, + +files/lighttpd-1.3.13-valid-user.diff, -lighttpd-1.3.13-r2.ebuild, + +lighttpd-1.3.13-r3.ebuild: + Revision bump; added two more patches from tigger^. See + http://trac.lighttpd.net/trac/ticket/4 and + http://trac.lighttpd.net/trac/ticket/149 respectively. + + 06 Jun 2005; Aaron Walker + files/lighttpd-1.3.10.initd: + Updated to 'use ldap'. + +*lighttpd-1.3.13-r2 (05 Jun 2005) + + 05 Jun 2005; Aaron Walker + -files/lighttpd-1.3.11-upstream.diff, + +files/lighttpd-1.3.13-pam-name.diff, -lighttpd-1.3.11.ebuild, + -lighttpd-1.3.13.ebuild, +lighttpd-1.3.13-r2.ebuild: + Revision bump; added pam name patch from tigger^. + +*lighttpd-1.3.13-r1 (13 May 2005) + + 13 May 2005; Aaron Walker + +files/lighttpd-1.3.13-no-mysql-means-no-mysql.diff, + +files/lighttpd-1.3.13-zope-deserves-lovins-too.diff, + +lighttpd-1.3.13-r1.ebuild: + Revision bump; added patch by tigger^ to make lighttpd+zope happy. added + patch by me to not install mod_mysql_vhost if USE=-mysql. + + 22 Mar 2005; lighttpd-1.3.10-r1.ebuild: + added ~amd64 + +*lighttpd-1.3.13 (07 Mar 2005) + + 07 Mar 2005; Aaron Walker +lighttpd-1.3.13.ebuild: + Version bump. + +*lighttpd-1.3.11 (23 Feb 2005) + + 23 Feb 2005; Aaron Walker + -files/lighttpd-1.1.8-gentoo.diff, -files/lighttpd-1.2.2-php.diff, + -files/lighttpd-1.2.2.initd, +files/lighttpd-1.3.11-gentoo.diff, + +files/lighttpd-1.3.11-php.diff, +files/lighttpd-1.3.11-upstream.diff, + +lighttpd-1.3.11.ebuild: + Version bump for bug 82792; removed old patches that I forgot to remove last + time. + + 16 Feb 2005; Aaron Walker lighttpd-1.3.10-r1.ebuild, + -lighttpd-1.3.5.ebuild: + Fix deps and removed all the unnecessary confutils stuff. Removed + mod-cache,mod-chat, and mod-localizer from IUSE since they're no longer + provided. Fixes bug 82010. Also removed vulnerable 1.3.5. + +*lighttpd-1.3.10-r1 (14 Feb 2005) + + 14 Feb 2005; Aaron Walker + files/lighttpd-1.1.8-gentoo.diff, +files/lighttpd-1.3.10-gentoo.diff, + files/lighttpd-1.3.10-php.diff, +files/lighttpd-1.3.10-upstream.diff, + -files/lighttpd.initd, -lighttpd-1.1.8-r1.ebuild, -lighttpd-1.1.8.ebuild, + -lighttpd-1.2.2.ebuild, +lighttpd-1.3.10-r1.ebuild, + -lighttpd-1.3.10.ebuild: + Revision bump; fixed manual page patching which should occur in the -gentoo + patch, not the -php patch. Also added some post-1.3.10 upstream fixes and + fixed LICENSE. + +*lighttpd-1.3.10 (14 Feb 2005) + + 14 Feb 2005; Aaron Walker + +files/lighttpd-1.3.10-php.diff, +files/lighttpd-1.3.10.initd, + +files/spawn-fcgi.confd, +files/spawn-fcgi.initd, +lighttpd-1.3.10.ebuild: + Version bump for bugs 76575 and 81776. + + 07 Jan 2005; Sven Wegener lighttpd-1.3.5.ebuild: + Added missing -1 to enewuser. Closes bug #76989. + + 04 Jan 2005; Sven Wegener lighttpd-1.3.5.ebuild: + Several small fixes. Correctly install init script. Use enewuser. + +*lighttpd-1.3.5 (02 Nov 2004) + + 02 Nov 2004; Stuart Herbert +lighttpd-1.3.5.ebuild: + Version bump; stable on x86 + + 28 Sep 2004; Sven Wegener + files/lighttpd-1.2.2.initd, files/lighttpd.initd: + Gentoo Technologies, Inc. -> Gentoo Foundation + + 08 Sep 2004; Renat Lumpau metadata.xml: + Fixed herd name + + 05 Sep 2004; Sven Wegener : + Fixed ChangeLog header. + + 03 Sep 2004; Pieter Van den Abeele + lighttpd-1.2.2.ebuild: + Masked lighttpd-1.2.2.ebuild testing for ppc + +*lighttpd-1.1.8 (08 Aug 2004) + + 08 Aug 2004; Stuart Herbert +metadata.xml, + +files/lighttpd-1.1.8-gentoo.diff, +files/lighttpd-1.2.2-php.diff, + +files/lighttpd-1.2.2.initd, +files/lighttpd.initd, + +lighttpd-1.1.8-r1.ebuild, +lighttpd-1.1.8.ebuild, +lighttpd-1.2.2.ebuild: + Moved from net-www/lighttpd to www-servers/lighttpd. + + 08 Aug 2004; Tom Martin lighttpd-1.1.8-r1.ebuild, + lighttpd-1.1.8.ebuild: + Typo in DESCRIPTION: intented -> intended. Bug 59717. + + 01 Jul 2004; Jeremy Huddleston + lighttpd-1.1.8-r1.ebuild, lighttpd-1.1.8.ebuild, lighttpd-1.2.2.ebuild: + virtual/glibc -> virtual/libc + +*lighttpd-1.2.2 (27 Jun 2004) + + 27 Jun 2004; Stuart Herbert + +files/lighttpd-1.2.2-php.diff, +files/lighttpd-1.2.2.initd, + +lighttpd-1.2.2.ebuild: + Version bump; php support now available; thanks to Boris Wachtmeister + ; see bug #55049 + + 25 Jun 2004; Aron Griffis lighttpd-1.1.8-r1.ebuild, + lighttpd-1.1.8.ebuild: + QA - fix use invocation + +*lighttpd-1.1.8-r1 (29 Apr 2004) + + 29 Apr 2004; Stuart Herbert lighttpd-1.1.8-r1.ebuild, + files/lighttpd.initd: + Fix for shutdown problems; see bug #46833 + + 27 Apr 2004; Aron Griffis lighttpd-1.1.8.ebuild: + Add inherit eutils + + 25 Apr 2004; David Holm lighttpd-1.1.8.ebuild: + Added to ~ppc. + + 24 Apr 2004; Stuart Herbert lighttpd-1.1.8.ebuild: + Replaced einstall (which doesn't work properly) with good ol' make install + + 23 Apr 2004; Stuart Herbert lighttpd-1.1.8.ebuild, + metadata.xml, files/lighttpd-1.1.8-gentoo.diff: + Fixes to get the server running; thanks to Boris Wachtmeister + once again + +*lighttpd-1.1.8 (23 Apr 2004) + + 23 Apr 2004; Stuart Herbert lighttpd-1.1.8.ebuild, + files/lighttpd-1.1.8-gentoo.diff, files/lighttpd.initd: + Initial import; thanks to Boris ; see bug #46833 + diff --git a/www-servers/lighttpd/Manifest b/www-servers/lighttpd/Manifest new file mode 100644 index 0000000..cec68c1 --- /dev/null +++ b/www-servers/lighttpd/Manifest @@ -0,0 +1,16 @@ +AUX 1.4.20/03_all_lighttpd-1.4.11-errorlog-pipe.diff 4931 RMD160 7653167b0cd3fde6cb7d3d6fe4ae30a8d2e56ebe SHA1 bd0ff91b5caf447f78bcad66a444fbe3719897fb SHA256 2b1a253dda1dbc688ac072608656121f8c2d346a64be1080c65f2ca1d81f8e2d +AUX 1.4.20/04_all_1.4.x_tls_server_name_indication.diff 10217 RMD160 1c02edd64c339be353335291a0dc7a0879af64e6 SHA1 aa49f9831b0c43c48f6554d73e4c9da5a6c19465 SHA256 becb5e0b3b33f3e522bc304dd50626743f987d2b9d2039a72a0d74ad00280fa7 +AUX conf/lighttpd.conf 8182 RMD160 450cf40f4ec517331f8932618a3c492cb566e4f3 SHA1 16922786a79807fa3233d1af105a99582d3486a5 SHA256 c0f6951e00d4e8c928f1799a84976ab8bb536bd59a104c13ca9d1d3661d8cebd +AUX conf/mime-types.conf 3291 RMD160 157c9a6f7d00e52c7d4118edcce8d1eb1e0a3c20 SHA1 3eec39060014e1498d3254919b10a64ca1e6ff00 SHA256 575231104d51fa1882c47021ab0aa00d615401059a6748d64453cb39aafba537 +AUX conf/mod_cgi.conf 869 RMD160 1d447bad36822657d014990128891cbdb6169468 SHA1 30066f52e469339cc8a5df8864b4cc2d9c558c3d SHA256 322656b4cfd22ca9f1f8ab160e0b932f1646622422fd49c6fc82ab416223eecf +AUX conf/mod_fastcgi.conf 661 RMD160 83b4126a4b0537fcd04db607a53e4742ceae039b SHA1 853a54799e9cd42ab9ff92bf0c07a0515ebe2d2a SHA256 61daa2ffac9e948d9d5130cc43f560a18c8dfb052cb7e3d4c6bd1decb6c9fd06 +AUX conf/mod_fastcgi.conf-1.4.13-r2 687 RMD160 f165f27a08f35c4792bd332be3a04370b69152e3 SHA1 ebb469944098a91772424a825fdd5a0464cef158 SHA256 d1adc1358b5d9e85353caa2e706bfa231d145dd59c075cdcb3f818b3cb5d722e +AUX lighttpd.confd 315 RMD160 c2d9c166a1209b853b400b5d21627f5d3f2d5216 SHA1 a09597a0d38d0b4d36a8f16f5d6fd5c4b7462b26 SHA256 94f69a173dc26610a43532474230537b9bc31ec846fb9f94cb72765f125edf87 +AUX lighttpd.initd-1.4.13-r3 1442 RMD160 17ce31a67f06f22b351ba6abfd868925eb5ad85f SHA1 58678d19bb60fd4e52a55381d9277ca472cbe805 SHA256 a4865824084d952050a1edc93bdffcbca33532d69268e13e96bb86c1a9a4bae6 +AUX lighttpd.logrotate 487 RMD160 2edb8b4abf75031af0a3b4182efb5b589dfa0d3c SHA1 24e1b048d7be5520ca5ef8ce31b55df13cc8d72b SHA256 503ee1cd454e2c0f9a212ef60dc8321893eda06ccf721ecbe94d189a09e0bc6c +AUX spawn-fcgi.confd 1076 RMD160 9468249fdedc39fa762a569622bae93f8b3481f9 SHA1 81bad945fc016275873e01e5f69838f73b275a3a SHA256 bfa452a849165f921a2febf0b06879db18c4c921f156b1452d06bb821063f768 +AUX spawn-fcgi.initd 1398 RMD160 3fd0fa41d100629e85960034237abc0866ec3d38 SHA1 9c07c9fd59ec73d5f37df109b188b8a7d691f949 SHA256 ae10c764e2bde9bfc483c57ca94a63d87c24cba00b4c06917885c533d2d245b1 +DIST lighttpd-1.4.20.tar.bz2 618018 RMD160 0fcc71d6063574da86b610c9bdc16b7e44f9d2e7 SHA1 e5944a40579e0f37c6a0eeb0ad751344b2d6006c SHA256 3cda2ce779f24948062f765f2630b5865e483f5fab7149681a2a25422fd61176 +EBUILD lighttpd-1.4.20-r1.ebuild 5919 RMD160 4eccc574fe1d7b63f3f4884920cab29e5fde1165 SHA1 1a7773f0456451fcdd4de0b145ca9adfd5c45ab2 SHA256 b8effe82200b5abe7953763c67eeb2cb49e6852a0dade4736967d483257cdc30 +MISC ChangeLog 43606 RMD160 57eb226e681fe8468e5e0de199bfc6c7a07ce548 SHA1 ff8bf7990f14c469bdd893020d2a4b0da9d79029 SHA256 3aa8ced475f219e13883509d1a1f8bdb59f48e85fe48c27db2fbb17a7fd42349 +MISC metadata.xml 927 RMD160 3d969f099d1bb8df70ec5f8ed78a83ad27d2b10d SHA1 1e564c4fc4edb8a4b2dc41f731071ec38e917027 SHA256 479db26201c5c934fd5fb5deccd8712a637114d5cde6e75da8ce9ad4872ec070 diff --git a/www-servers/lighttpd/files/1.4.20/03_all_lighttpd-1.4.11-errorlog-pipe.diff b/www-servers/lighttpd/files/1.4.20/03_all_lighttpd-1.4.11-errorlog-pipe.diff new file mode 100644 index 0000000..5133fea --- /dev/null +++ b/www-servers/lighttpd/files/1.4.20/03_all_lighttpd-1.4.11-errorlog-pipe.diff @@ -0,0 +1,175 @@ +Initial patch from http://trac.lighttpd.net/trac/ticket/296 +Updated to apply against 1.4.20 by hoffie +Upstream will only accept it once it has been changed to make the pipe logging more generic + +diff -r 447bac6969ef src/base.h +--- a/src/base.h Tue Aug 19 18:04:17 2008 +0200 ++++ b/src/base.h Tue Aug 19 19:45:00 2008 +0200 +@@ -530,7 +530,7 @@ + + /* the errorlog */ + int errorlog_fd; +- enum { ERRORLOG_STDERR, ERRORLOG_FILE, ERRORLOG_SYSLOG } errorlog_mode; ++ enum { ERRORLOG_STDERR, ERRORLOG_FILE, ERRORLOG_SYSLOG, ERRORLOG_PIPE } errorlog_mode; + buffer *errorlog_buf; + + fdevents *ev, *ev_ins; +diff -r 447bac6969ef src/log.c +--- a/src/log.c Tue Aug 19 18:04:17 2008 +0200 ++++ b/src/log.c Tue Aug 19 19:45:00 2008 +0200 +@@ -57,10 +57,11 @@ + /** + * open the errorlog + * +- * we have 3 possibilities: ++ * we have 4 possibilities: + * - stderr (default) + * - syslog + * - logfile ++ * - pipe + * + * if the open failed, report to the user and die + * +@@ -79,21 +80,80 @@ + srv->errorlog_mode = ERRORLOG_SYSLOG; + } else if (!buffer_is_empty(srv->srvconf.errorlog_file)) { + const char *logfile = srv->srvconf.errorlog_file->ptr; ++ if (logfile[0] == '|') { ++#ifdef HAVE_FORK ++ /* create write pipe and spawn process */ + +- if (-1 == (srv->errorlog_fd = open(logfile, O_APPEND | O_WRONLY | O_CREAT | O_LARGEFILE, 0644))) { +- log_error_write(srv, __FILE__, __LINE__, "SSSS", ++ int to_log_fds[2]; ++ int fd; ++ pid_t pid; ++ ++ if (pipe(to_log_fds)) { ++ log_error_write(srv, __FILE__, __LINE__, "ss", ++ "pipe failed: ", strerror(errno)); ++ return -1; ++ } ++ ++ /* fork, execve */ ++ switch (pid = fork()) { ++ case 0: ++ /* child */ ++ ++ close(STDIN_FILENO); ++ dup2(to_log_fds[0], STDIN_FILENO); ++ close(to_log_fds[0]); ++ /* not needed */ ++ close(to_log_fds[1]); ++ ++ /* we don't need the client socket */ ++ for (fd = 3; fd < 256; fd++) { ++ close(fd); ++ } ++ ++ /* exec the log-process (skip the | ) ++ * ++ */ ++ ++ execl("/bin/sh", "sh", "-c", logfile + 1, NULL); ++ ++ log_error_write(srv, __FILE__, __LINE__, "sss", ++ "spawning log-process failed: ", ++ strerror(errno), logfile + 1); ++ ++ exit(-1); ++ break; ++ case -1: ++ /* error */ ++ log_error_write(srv, __FILE__, __LINE__, "ss", "fork failed:", strerror(errno)); ++ break; ++ default: ++ close(to_log_fds[0]); ++ ++ srv->errorlog_fd = to_log_fds[1]; ++ ++ break; ++ } ++ srv->errorlog_mode = ERRORLOG_PIPE; ++#else ++ log_error_write(srv, __FILE__, __LINE__, "SSS", ++ "opening errorlog '", logfile,"' impossible"); ++ return -1; ++#endif ++ } else { ++ if (-1 == (srv->errorlog_fd = open(logfile, O_APPEND | O_WRONLY | O_CREAT | O_LARGEFILE, 0644))) { ++ log_error_write(srv, __FILE__, __LINE__, "SSSS", + "opening errorlog '", logfile, + "' failed: ", strerror(errno)); + +- return -1; ++ return -1; ++ } ++ srv->errorlog_mode = ERRORLOG_FILE; + } + #ifdef FD_CLOEXEC + /* close fd on exec (cgi) */ + fcntl(srv->errorlog_fd, F_SETFD, FD_CLOEXEC); + #endif +- srv->errorlog_mode = ERRORLOG_FILE; + } +- + log_error_write(srv, __FILE__, __LINE__, "s", "server started"); + + #ifdef HAVE_VALGRIND_VALGRIND_H +@@ -122,7 +182,7 @@ + */ + + int log_error_cycle(server *srv) { +- /* only cycle if we are not in syslog-mode */ ++ /* only cycle if the error log is a file */ + + if (srv->errorlog_mode == ERRORLOG_FILE) { + const char *logfile = srv->srvconf.errorlog_file->ptr; +@@ -154,6 +214,7 @@ + + int log_error_close(server *srv) { + switch(srv->errorlog_mode) { ++ case ERRORLOG_PIPE: /* fall through */ + case ERRORLOG_FILE: + close(srv->errorlog_fd); + break; +@@ -173,6 +234,7 @@ + va_list ap; + + switch(srv->errorlog_mode) { ++ case ERRORLOG_PIPE: + case ERRORLOG_FILE: + case ERRORLOG_STDERR: + /* cache the generated timestamp */ +@@ -257,6 +319,7 @@ + va_end(ap); + + switch(srv->errorlog_mode) { ++ case ERRORLOG_PIPE: /* fall through */ + case ERRORLOG_FILE: + buffer_append_string_len(srv->errorlog_buf, CONST_STR_LEN("\n")); + write(srv->errorlog_fd, srv->errorlog_buf->ptr, srv->errorlog_buf->used - 1); +diff -r 447bac6969ef src/mod_cgi.c +--- a/src/mod_cgi.c Tue Aug 19 18:04:17 2008 +0200 ++++ b/src/mod_cgi.c Tue Aug 19 19:45:00 2008 +0200 +@@ -781,7 +781,7 @@ + * + * we feed the stderr of the CGI to our errorlog, if possible + */ +- if (srv->errorlog_mode == ERRORLOG_FILE) { ++ if ((srv->errorlog_mode == ERRORLOG_FILE) || (srv->errorlog_mode == ERRORLOG_PIPE)) { + close(STDERR_FILENO); + dup2(srv->errorlog_fd, STDERR_FILENO); + } +diff -r 447bac6969ef src/mod_rrdtool.c +--- a/src/mod_rrdtool.c Tue Aug 19 18:04:17 2008 +0200 ++++ b/src/mod_rrdtool.c Tue Aug 19 19:45:00 2008 +0200 +@@ -134,7 +134,7 @@ + + close(STDERR_FILENO); + +- if (srv->errorlog_mode == ERRORLOG_FILE) { ++ if ((srv->errorlog_mode == ERRORLOG_FILE) || (srv->errorlog_mode == ERRORLOG_PIPE)) { + dup2(srv->errorlog_fd, STDERR_FILENO); + close(srv->errorlog_fd); + } diff --git a/www-servers/lighttpd/files/1.4.20/04_all_1.4.x_tls_server_name_indication.diff b/www-servers/lighttpd/files/1.4.20/04_all_1.4.x_tls_server_name_indication.diff new file mode 100644 index 0000000..5cd19d6 --- /dev/null +++ b/www-servers/lighttpd/files/1.4.20/04_all_1.4.x_tls_server_name_indication.diff @@ -0,0 +1,324 @@ +Index: src/configfile-glue.c +=================================================================== +--- src/configfile-glue.c (revision 2402) ++++ src/configfile-glue.c (working copy) +@@ -289,6 +289,10 @@ + default: + break; + } ++#if defined USE_OPENSSL && ! defined OPENSSL_NO_TLSEXT ++ } else if (!buffer_is_empty(con->tlsext_server_name)) { ++ l = con->tlsext_server_name; ++#endif + } else { + l = srv->empty_string; + } +Index: src/base.h +=================================================================== +--- src/base.h (revision 2402) ++++ src/base.h (working copy) +@@ -31,6 +31,9 @@ + #if defined HAVE_LIBSSL && defined HAVE_OPENSSL_SSL_H + # define USE_OPENSSL + # include ++# if ! defined OPENSSL_NO_TLSEXT && ! defined SSL_CTRL_SET_TLSEXT_HOSTNAME ++# define OPENSSL_NO_TLSEXT ++# endif + #endif + + #ifdef HAVE_FAM_H +@@ -417,7 +420,10 @@ + #ifdef USE_OPENSSL + SSL *ssl; + buffer *ssl_error_want_reuse_buffer; ++#ifndef OPENSSL_NO_TLSEXT ++ buffer *tlsext_server_name; + #endif ++#endif + /* etag handling */ + etag_flags_t etag_flags; + +Index: src/connections.c +=================================================================== +--- src/connections.c (revision 2402) ++++ src/connections.c (working copy) +@@ -664,6 +664,9 @@ + CLEAN(server_name); + CLEAN(error_handler); + CLEAN(dst_addr_buf); ++#if defined USE_OPENSSL && ! defined OPENSSL_NO_TLSEXT ++ CLEAN(tlsext_server_name); ++#endif + + #undef CLEAN + con->write_queue = chunkqueue_init(); +@@ -728,6 +731,9 @@ + CLEAN(server_name); + CLEAN(error_handler); + CLEAN(dst_addr_buf); ++#if defined USE_OPENSSL && ! defined OPENSSL_NO_TLSEXT ++ CLEAN(tlsext_server_name); ++#endif + #undef CLEAN + free(con->plugin_ctx); + free(con->cond_cache); +@@ -1338,6 +1344,9 @@ + return NULL; + } + ++#ifndef OPENSSL_NO_TLSEXT ++ SSL_set_app_data(con->ssl, con); ++#endif + SSL_set_accept_state(con->ssl); + con->conf.is_ssl=1; + +Index: src/network.c +=================================================================== +--- src/network.c (revision 2402) ++++ src/network.c (working copy) +@@ -62,6 +62,45 @@ + return HANDLER_GO_ON; + } + ++#if defined USE_OPENSSL && ! defined OPENSSL_NO_TLSEXT ++int network_ssl_servername_callback(SSL *ssl, int *al, server *srv) { ++ const char *servername; ++ connection *con = (connection *) SSL_get_app_data(ssl); ++ ++ buffer_copy_string(con->uri.scheme, "https"); ++ ++ if (NULL == (servername = SSL_get_servername(ssl, TLSEXT_NAMETYPE_host_name))) { ++ log_error_write(srv, __FILE__, __LINE__, "ss", "SSL:", ++ "failed to get TLS server name"); ++ return SSL_TLSEXT_ERR_NOACK; ++ } ++ buffer_copy_string(con->tlsext_server_name, servername); ++ buffer_to_lower(con->tlsext_server_name); ++ ++ config_cond_cache_reset(srv, con); ++ config_setup_connection(srv, con); ++ ++ config_patch_connection(srv, con, COMP_SERVER_SOCKET); ++ config_patch_connection(srv, con, COMP_HTTP_SCHEME); ++ config_patch_connection(srv, con, COMP_HTTP_HOST); ++ ++ if (NULL == con->conf.ssl_ctx) { ++ log_error_write(srv, __FILE__, __LINE__, "ssb", "SSL:", ++ "null SSL_CTX for TLS server name", con->tlsext_server_name); ++ return SSL_TLSEXT_ERR_ALERT_FATAL; ++ } ++ ++ /* switch to new SSL_CTX in reaction to a client's server_name extension */ ++ if (con->conf.ssl_ctx != SSL_set_SSL_CTX(ssl, con->conf.ssl_ctx)) { ++ log_error_write(srv, __FILE__, __LINE__, "ssb", "SSL:", ++ "failed to set SSL_CTX for TLS server name", con->tlsext_server_name); ++ return SSL_TLSEXT_ERR_ALERT_FATAL; ++ } ++ ++ return SSL_TLSEXT_ERR_OK; ++} ++#endif ++ + int network_server_init(server *srv, buffer *host_token, specific_config *s) { + int val; + socklen_t addr_len; +@@ -312,78 +351,10 @@ + + if (s->is_ssl) { + #ifdef USE_OPENSSL +- if (srv->ssl_is_init == 0) { +- SSL_load_error_strings(); +- SSL_library_init(); +- srv->ssl_is_init = 1; +- +- if (0 == RAND_status()) { +- log_error_write(srv, __FILE__, __LINE__, "ss", "SSL:", +- "not enough entropy in the pool"); +- return -1; +- } +- } +- +- if (NULL == (s->ssl_ctx = SSL_CTX_new(SSLv23_server_method()))) { +- log_error_write(srv, __FILE__, __LINE__, "ss", "SSL:", +- ERR_error_string(ERR_get_error(), NULL)); +- return -1; +- } +- +- if (!s->ssl_use_sslv2) { +- /* disable SSLv2 */ +- if (SSL_OP_NO_SSLv2 != SSL_CTX_set_options(s->ssl_ctx, SSL_OP_NO_SSLv2)) { +- log_error_write(srv, __FILE__, __LINE__, "ss", "SSL:", +- ERR_error_string(ERR_get_error(), NULL)); +- return -1; +- } +- } +- +- if (!buffer_is_empty(s->ssl_cipher_list)) { +- /* Disable support for low encryption ciphers */ +- if (SSL_CTX_set_cipher_list(s->ssl_ctx, s->ssl_cipher_list->ptr) != 1) { +- log_error_write(srv, __FILE__, __LINE__, "ss", "SSL:", +- ERR_error_string(ERR_get_error(), NULL)); +- return -1; +- } +- } +- +- if (buffer_is_empty(s->ssl_pemfile)) { ++ if (NULL == (srv_socket->ssl_ctx = s->ssl_ctx)) { + log_error_write(srv, __FILE__, __LINE__, "s", "ssl.pemfile has to be set"); + return -1; + } +- +- if (!buffer_is_empty(s->ssl_ca_file)) { +- if (1 != SSL_CTX_load_verify_locations(s->ssl_ctx, s->ssl_ca_file->ptr, NULL)) { +- log_error_write(srv, __FILE__, __LINE__, "ssb", "SSL:", +- ERR_error_string(ERR_get_error(), NULL), s->ssl_ca_file); +- return -1; +- } +- } +- +- if (SSL_CTX_use_certificate_file(s->ssl_ctx, s->ssl_pemfile->ptr, SSL_FILETYPE_PEM) < 0) { +- log_error_write(srv, __FILE__, __LINE__, "ssb", "SSL:", +- ERR_error_string(ERR_get_error(), NULL), s->ssl_pemfile); +- return -1; +- } +- +- if (SSL_CTX_use_PrivateKey_file (s->ssl_ctx, s->ssl_pemfile->ptr, SSL_FILETYPE_PEM) < 0) { +- log_error_write(srv, __FILE__, __LINE__, "ssb", "SSL:", +- ERR_error_string(ERR_get_error(), NULL), s->ssl_pemfile); +- return -1; +- } +- +- if (SSL_CTX_check_private_key(s->ssl_ctx) != 1) { +- log_error_write(srv, __FILE__, __LINE__, "sssb", "SSL:", +- "Private key does not match the certificate public key, reason:", +- ERR_error_string(ERR_get_error(), NULL), +- s->ssl_pemfile); +- return -1; +- } +- SSL_CTX_set_default_read_ahead(s->ssl_ctx, 1); +- SSL_CTX_set_mode(s->ssl_ctx, SSL_CTX_get_mode(s->ssl_ctx) | SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER); +- +- srv_socket->ssl_ctx = s->ssl_ctx; + #else + + buffer_free(srv_socket->srv_token); +@@ -491,6 +462,99 @@ + { NETWORK_BACKEND_UNSET, NULL } + }; + ++#ifdef USE_OPENSSL ++ /* load SSL certificates */ ++ for (i = 0; i < srv->config_context->used; i++) { ++ data_config *dc = (data_config *)srv->config_context->data[i]; ++ specific_config *s = srv->config_storage[i]; ++ ++ if (buffer_is_empty(s->ssl_pemfile)) continue; ++ ++#ifdef OPENSSL_NO_TLSEXT ++ if (COMP_HTTP_HOST == dc->comp) { ++ log_error_write(srv, __FILE__, __LINE__, "ss", "SSL:", ++ "can't use ssl.pemfile with $HTTP[\"host\"], openssl version does not support TLS extensions"); ++ return -1; ++ } ++#endif ++ ++ if (srv->ssl_is_init == 0) { ++ SSL_load_error_strings(); ++ SSL_library_init(); ++ srv->ssl_is_init = 1; ++ ++ if (0 == RAND_status()) { ++ log_error_write(srv, __FILE__, __LINE__, "ss", "SSL:", ++ "not enough entropy in the pool"); ++ return -1; ++ } ++ } ++ ++ if (NULL == (s->ssl_ctx = SSL_CTX_new(SSLv23_server_method()))) { ++ log_error_write(srv, __FILE__, __LINE__, "ss", "SSL:", ++ ERR_error_string(ERR_get_error(), NULL)); ++ return -1; ++ } ++ ++ if (!s->ssl_use_sslv2) { ++ /* disable SSLv2 */ ++ if (SSL_OP_NO_SSLv2 != SSL_CTX_set_options(s->ssl_ctx, SSL_OP_NO_SSLv2)) { ++ log_error_write(srv, __FILE__, __LINE__, "ss", "SSL:", ++ ERR_error_string(ERR_get_error(), NULL)); ++ return -1; ++ } ++ } ++ ++ if (!buffer_is_empty(s->ssl_cipher_list)) { ++ /* Disable support for low encryption ciphers */ ++ if (SSL_CTX_set_cipher_list(s->ssl_ctx, s->ssl_cipher_list->ptr) != 1) { ++ log_error_write(srv, __FILE__, __LINE__, "ss", "SSL:", ++ ERR_error_string(ERR_get_error(), NULL)); ++ return -1; ++ } ++ } ++ ++ if (!buffer_is_empty(s->ssl_ca_file)) { ++ if (1 != SSL_CTX_load_verify_locations(s->ssl_ctx, s->ssl_ca_file->ptr, NULL)) { ++ log_error_write(srv, __FILE__, __LINE__, "ssb", "SSL:", ++ ERR_error_string(ERR_get_error(), NULL), s->ssl_ca_file); ++ return -1; ++ } ++ } ++ ++ if (SSL_CTX_use_certificate_file(s->ssl_ctx, s->ssl_pemfile->ptr, SSL_FILETYPE_PEM) < 0) { ++ log_error_write(srv, __FILE__, __LINE__, "ssb", "SSL:", ++ ERR_error_string(ERR_get_error(), NULL), s->ssl_pemfile); ++ return -1; ++ } ++ ++ if (SSL_CTX_use_PrivateKey_file (s->ssl_ctx, s->ssl_pemfile->ptr, SSL_FILETYPE_PEM) < 0) { ++ log_error_write(srv, __FILE__, __LINE__, "ssb", "SSL:", ++ ERR_error_string(ERR_get_error(), NULL), s->ssl_pemfile); ++ return -1; ++ } ++ ++ if (SSL_CTX_check_private_key(s->ssl_ctx) != 1) { ++ log_error_write(srv, __FILE__, __LINE__, "sssb", "SSL:", ++ "Private key does not match the certificate public key, reason:", ++ ERR_error_string(ERR_get_error(), NULL), ++ s->ssl_pemfile); ++ return -1; ++ } ++ SSL_CTX_set_default_read_ahead(s->ssl_ctx, 1); ++ SSL_CTX_set_mode(s->ssl_ctx, SSL_CTX_get_mode(s->ssl_ctx) | SSL_MODE_ACCEPT_MOVING_WRITE_BUFFER); ++ ++#ifndef OPENSSL_NO_TLSEXT ++ if (!SSL_CTX_set_tlsext_servername_callback(s->ssl_ctx, network_ssl_servername_callback) || ++ !SSL_CTX_set_tlsext_servername_arg(s->ssl_ctx, srv)) { ++ log_error_write(srv, __FILE__, __LINE__, "ss", "SSL:", ++ "failed to initialize TLS servername callback, openssl library does not support TLS servername extension"); ++ return -1; ++ } ++#endif ++ } ++#endif ++ + b = buffer_init(); + + buffer_copy_string_buffer(b, srv->srvconf.bindhost); +Index: src/configfile.c +=================================================================== +--- src/configfile.c (revision 2402) ++++ src/configfile.c (working copy) +@@ -293,6 +293,7 @@ + PATCH(is_ssl); + + PATCH(ssl_pemfile); ++ PATCH(ssl_ctx); + PATCH(ssl_ca_file); + PATCH(ssl_cipher_list); + PATCH(ssl_use_sslv2); +@@ -348,6 +349,7 @@ + PATCH(etag_use_size); + } else if (buffer_is_equal_string(du->key, CONST_STR_LEN("ssl.pemfile"))) { + PATCH(ssl_pemfile); ++ PATCH(ssl_ctx); + } else if (buffer_is_equal_string(du->key, CONST_STR_LEN("ssl.ca-file"))) { + PATCH(ssl_ca_file); + } else if (buffer_is_equal_string(du->key, CONST_STR_LEN("ssl.use-sslv2"))) { diff --git a/www-servers/lighttpd/files/conf/lighttpd.conf b/www-servers/lighttpd/files/conf/lighttpd.conf new file mode 100644 index 0000000..778a406 --- /dev/null +++ b/www-servers/lighttpd/files/conf/lighttpd.conf @@ -0,0 +1,321 @@ +############################################################################### +# Default lighttpd.conf for Gentoo. +# $Header: /var/cvsroot/gentoo-x86/www-servers/lighttpd/files/conf/lighttpd.conf,v 1.3 2005/09/01 14:22:35 ka0ttic Exp $ +############################################################################### + +# {{{ variables +var.basedir = "/var/www/localhost" +var.logdir = "/var/log/lighttpd" +var.statedir = "/var/lib/lighttpd" +# }}} + +# {{{ modules +# At the very least, mod_access and mod_accesslog should be enabled. +# All other modules should only be loaded if necessary. +# NOTE: the order of modules is important. +server.modules = ( +# "mod_rewrite", +# "mod_redirect", +# "mod_alias", + "mod_access", +# "mod_cml", +# "mod_trigger_b4_dl", +# "mod_auth", +# "mod_status", +# "mod_setenv", +# "mod_proxy", +# "mod_simple_vhost", +# "mod_evhost", +# "mod_userdir", +# "mod_compress", +# "mod_ssi", +# "mod_usertrack", +# "mod_expire", +# "mod_secdownload", +# "mod_rrdtool", +# "mod_webdav", + "mod_accesslog" +) +# }}} + +# {{{ includes +include "mime-types.conf" +# uncomment for cgi support +# include "mod_cgi.conf" +# uncomment for php/fastcgi support +# include "mod_fastcgi.conf" +# }}} + +# {{{ server settings +server.username = "lighttpd" +server.groupname = "lighttpd" + +server.document-root = var.basedir + "/htdocs" +server.pid-file = "/var/run/lighttpd.pid" + +server.errorlog = var.logdir + "/error.log" +# log errors to syslog instead +# server.errorlog-use-syslog = "enable" + +server.indexfiles = ("index.php", "index.html", + "index.htm", "default.htm") + +# server.tag = "lighttpd" + +server.follow-symlink = "enable" + +# event handler (defaults to "poll") +# see performance.txt +# +# for >= linux-2.4 +# server.event-handler = "linux-rtsig" +# for >= linux-2.6 +# server.event-handler = "linux-sysepoll" +# for FreeBSD +# server.event-handler = "freebsd-kqueue" + +# chroot to directory (defaults to no chroot) +# server.chroot = "/" + +# bind to port (defaults to 80) +# server.port = 81 + +# bind to name (defaults to all interfaces) +# server.bind = "grisu.home.kneschke.de" + +# error-handler for status 404 +# server.error-handler-404 = "/error-handler.html" +# server.error-handler-404 = "/error-handler.php" + +# Format: .html +# -> ..../status-404.html for 'File not found' +# server.errorfile-prefix = var.basedir + "/error/status-" + +# FAM support for caching stat() calls +# requires that lighttpd be built with USE=fam +# server.stat-cache-engine = "fam" +# }}} + +# {{{ mod_staticfile + +# which extensions should not be handled via static-file transfer +# (extensions that are usually handled by mod_cgi, mod_fastcgi, etc). +static-file.exclude-extensions = (".php", ".pl", ".cgi", ".fcgi") +# }}} + +# {{{ mod_accesslog +accesslog.filename = var.logdir + "/access.log" +# }}} + +# {{{ mod_dirlisting +# enable directory listings +# dir-listing.activate = "enable" +# +# don't list hidden files/directories +# dir-listing.hide-dotfiles = "enable" +# +# use a different css for directory listings +# dir-listing.external-css = "/path/to/dir-listing.css" +# +# list of regular expressions. files that match any of the +# specified regular expressions will be excluded from directory +# listings. +# dir-listing.exclude = ("^\.", "~$") +# }}} + +# {{{ mod_access +# see access.txt + +url.access-deny = ("~", ".inc") +# }}} + +# {{{ mod_userdir +# see userdir.txt +# +# userdir.path = "public_html" +# userdir.exclude-user = ("root") +# }}} + +# {{{ mod_ssi +# see ssi.txt +# +# ssi.extension = (".shtml") +# }}} + +# {{{ mod_ssl +# see ssl.txt +# +# ssl.engine = "enable" +# ssl.pemfile = "server.pem" +# }}} + +# {{{ mod_status +# see status.txt +# +# status.status-url = "/server-status" +# status.config-url = "/server-config" +# }}} + +# {{{ mod_simple_vhost +# see simple-vhost.txt +# +# If you want name-based virtual hosting add the next three settings and load +# mod_simple_vhost +# +# document-root = +# virtual-server-root + virtual-server-default-host + virtual-server-docroot +# or +# virtual-server-root + http-host + virtual-server-docroot +# +# simple-vhost.server-root = "/home/weigon/wwwroot/servers/" +# simple-vhost.default-host = "grisu.home.kneschke.de" +# simple-vhost.document-root = "/pages/" +# }}} + +# {{{ mod_compress +# see compress.txt +# +# compress.cache-dir = var.statedir + "/cache/compress" +# compress.filetype = ("text/plain", "text/html") +# }}} + +# {{{ mod_proxy +# see proxy.txt +# +# proxy.server = ( ".php" => +# ( "localhost" => +# ( +# "host" => "192.168.0.101", +# "port" => 80 +# ) +# ) +# ) +# }}} + +# {{{ mod_auth +# see authentication.txt +# +# auth.backend = "plain" +# auth.backend.plain.userfile = "lighttpd.user" +# auth.backend.plain.groupfile = "lighttpd.group" + +# auth.backend.ldap.hostname = "localhost" +# auth.backend.ldap.base-dn = "dc=my-domain,dc=com" +# auth.backend.ldap.filter = "(uid=$)" + +# auth.require = ( "/server-status" => +# ( +# "method" => "digest", +# "realm" => "download archiv", +# "require" => "user=jan" +# ), +# "/server-info" => +# ( +# "method" => "digest", +# "realm" => "download archiv", +# "require" => "valid-user" +# ) +# ) +# }}} + +# {{{ mod_rewrite +# see rewrite.txt +# +# url.rewrite = ( +# "^/$" => "/server-status" +# ) +# }}} + +# {{{ mod_redirect +# see redirect.txt +# +# url.redirect = ( +# "^/wishlist/(.+)" => "http://www.123.org/$1" +# ) +# }}} + +# {{{ mod_evhost +# define a pattern for the host url finding +# %% => % sign +# %0 => domain name + tld +# %1 => tld +# %2 => domain name without tld +# %3 => subdomain 1 name +# %4 => subdomain 2 name +# +# evhost.path-pattern = "/home/storage/dev/www/%3/htdocs/" +# }}} + +# {{{ mod_expire +# expire.url = ( +# "/buggy/" => "access 2 hours", +# "/asdhas/" => "access plus 1 seconds 2 minutes" +# ) +# }}} + +# {{{ mod_rrdtool +# see rrdtool.txt +# +# rrdtool.binary = "/usr/bin/rrdtool" +# rrdtool.db-name = var.statedir + "/lighttpd.rrd" +# }}} + +# {{{ mod_setenv +# see setenv.txt +# +# setenv.add-request-header = ( "TRAV_ENV" => "mysql://user@host/db" ) +# setenv.add-response-header = ( "X-Secret-Message" => "42" ) +# }}} + +# {{{ mod_trigger_b4_dl +# see trigger_b4_dl.txt +# +# trigger-before-download.gdbm-filename = "/home/weigon/testbase/trigger.db" +# trigger-before-download.memcache-hosts = ( "127.0.0.1:11211" ) +# trigger-before-download.trigger-url = "^/trigger/" +# trigger-before-download.download-url = "^/download/" +# trigger-before-download.deny-url = "http://127.0.0.1/index.html" +# trigger-before-download.trigger-timeout = 10 +# }}} + +# {{{ mod_cml +# see cml.txt +# +# don't forget to add index.cml to server.indexfiles +# cml.extension = ".cml" +# cml.memcache-hosts = ( "127.0.0.1:11211" ) +# }}} + +# {{{ mod_webdav +# see webdav.txt +# +# $HTTP["url"] =~ "^/dav($|/)" { +# webdav.activate = "enable" +# webdav.is-readonly = "enable" +# } +# }}} + +# {{{ extra rules +# +# set Content-Encoding and reset Content-Type for browsers that +# support decompressing on-thy-fly (requires mod_setenv) +# $HTTP["url"] =~ "\.gz$" { +# setenv.add-response-header = ("Content-Encoding" => "x-gzip") +# mimetype.assign = (".gz" => "text/plain") +# } + +# $HTTP["url"] =~ "\.bz2$" { +# setenv.add-response-header = ("Content-Encoding" => "x-bzip2") +# mimetype.assign = (".bz2" => "text/plain") +# } +# +# }}} + +# {{{ debug +# debug.log-request-header = "enable" +# debug.log-response-header = "enable" +# debug.log-request-handling = "enable" +# debug.log-file-not-found = "enable" +# }}} + +# vim: set ft=conf foldmethod=marker et : diff --git a/www-servers/lighttpd/files/conf/mime-types.conf b/www-servers/lighttpd/files/conf/mime-types.conf new file mode 100644 index 0000000..3c36577 --- /dev/null +++ b/www-servers/lighttpd/files/conf/mime-types.conf @@ -0,0 +1,76 @@ +############################################################################### +# Default mime-types.conf for Gentoo. +# include'd from lighttpd.conf. +# $Header: /var/cvsroot/gentoo-x86/www-servers/lighttpd/files/conf/mime-types.conf,v 1.2 2005/08/27 12:36:13 ka0ttic Exp $ +############################################################################### + +# {{{ mime types +mimetype.assign = ( + ".pdf" => "application/pdf", + ".sig" => "application/pgp-signature", + ".spl" => "application/futuresplash", + ".class" => "application/octet-stream", + ".ps" => "application/postscript", + ".torrent" => "application/x-bittorrent", + ".dvi" => "application/x-dvi", + ".gz" => "application/x-gzip", + ".pac" => "application/x-ns-proxy-autoconfig", + ".swf" => "application/x-shockwave-flash", + ".tar.gz" => "application/x-tgz", + ".tgz" => "application/x-tgz", + ".tar" => "application/x-tar", + ".zip" => "application/zip", + ".mp3" => "audio/mpeg", + ".m3u" => "audio/x-mpegurl", + ".wma" => "audio/x-ms-wma", + ".wax" => "audio/x-ms-wax", + ".ogg" => "application/ogg", + ".wav" => "audio/x-wav", + ".gif" => "image/gif", + ".jpg" => "image/jpeg", + ".jpeg" => "image/jpeg", + ".png" => "image/png", + ".xbm" => "image/x-xbitmap", + ".xpm" => "image/x-xpixmap", + ".xwd" => "image/x-xwindowdump", + ".css" => "text/css", + ".html" => "text/html", + ".htm" => "text/html", + ".js" => "text/javascript", + ".asc" => "text/plain", + ".c" => "text/plain", + ".h" => "text/plain", + ".cc" => "text/plain", + ".cpp" => "text/plain", + ".hh" => "text/plain", + ".hpp" => "text/plain", + ".conf" => "text/plain", + ".log" => "text/plain", + ".text" => "text/plain", + ".txt" => "text/plain", + ".diff" => "text/plain", + ".patch" => "text/plain", + ".ebuild" => "text/plain", + ".eclass" => "text/plain", + ".rtf" => "application/rtf", + ".bmp" => "image/bmp", + ".tif" => "image/tiff", + ".tiff" => "image/tiff", + ".ico" => "image/x-icon", + ".dtd" => "text/xml", + ".xml" => "text/xml", + ".mpeg" => "video/mpeg", + ".mpg" => "video/mpeg", + ".mov" => "video/quicktime", + ".qt" => "video/quicktime", + ".avi" => "video/x-msvideo", + ".asf" => "video/x-ms-asf", + ".asx" => "video/x-ms-asf", + ".wmv" => "video/x-ms-wmv", + ".bz2" => "application/x-bzip", + ".tbz" => "application/x-bzip-compressed-tar", + ".tar.bz2" => "application/x-bzip-compressed-tar" + ) +# }}} + +# vim: set ft=conf foldmethod=marker et : diff --git a/www-servers/lighttpd/files/conf/mod_cgi.conf b/www-servers/lighttpd/files/conf/mod_cgi.conf new file mode 100644 index 0000000..1cb3770 --- /dev/null +++ b/www-servers/lighttpd/files/conf/mod_cgi.conf @@ -0,0 +1,33 @@ +############################################################################### +# mod_cgi.conf +# include'd by lighttpd.conf. +# $Header: /var/cvsroot/gentoo-x86/www-servers/lighttpd/files/conf/mod_cgi.conf,v 1.1 2005/08/27 12:36:13 ka0ttic Exp $ +############################################################################### + +# +# see cgi.txt for more information on using mod_cgi +# + +server.modules += ("mod_cgi") + +# NOTE: this requires mod_alias +alias.url = ( + "/cgi-bin/" => var.basedir + "/cgi-bin/" +) + +# +# Note that you'll also want to enable the +# cgi-bin alias via mod_alias (above). +# + +$HTTP["url"] =~ "^/cgi-bin/" { + # disable directory listings + dir-listing.activate = "disable" + # only allow cgi's in this directory + cgi.assign = ( + ".pl" => "/usr/bin/perl", + ".cgi" => "/usr/bin/perl" + ) +} + +# vim: set ft=conf foldmethod=marker et : diff --git a/www-servers/lighttpd/files/conf/mod_fastcgi.conf b/www-servers/lighttpd/files/conf/mod_fastcgi.conf new file mode 100644 index 0000000..452e174 --- /dev/null +++ b/www-servers/lighttpd/files/conf/mod_fastcgi.conf @@ -0,0 +1,18 @@ +############################################################################### +# mod_fastcgi.conf +# include'd by lighttpd.conf. +# $Header: /var/cvsroot/gentoo-x86/www-servers/lighttpd/files/conf/mod_fastcgi.conf,v 1.2 2005/08/27 12:36:13 ka0ttic Exp $ +############################################################################### + +server.modules += ("mod_fastcgi") +fastcgi.server = ( ".php" => + ( "localhost" => + ( + "host" => "127.0.0.1", + "port" => 1026, + "bin-path" => "/usr/bin/php-cgi" + ) + ) + ) + +# vim: set ft=conf foldmethod=marker et : diff --git a/www-servers/lighttpd/files/conf/mod_fastcgi.conf-1.4.13-r2 b/www-servers/lighttpd/files/conf/mod_fastcgi.conf-1.4.13-r2 new file mode 100644 index 0000000..ca1369a --- /dev/null +++ b/www-servers/lighttpd/files/conf/mod_fastcgi.conf-1.4.13-r2 @@ -0,0 +1,17 @@ +############################################################################### +# mod_fastcgi.conf +# include'd by lighttpd.conf. +# $Header: /var/cvsroot/gentoo-x86/www-servers/lighttpd/files/conf/mod_fastcgi.conf-1.4.13-r2,v 1.1 2007/04/01 23:22:00 robbat2 Exp $ +############################################################################### + +server.modules += ("mod_fastcgi") +fastcgi.server = ( ".php" => + ( "localhost" => + ( + "socket" => "/var/run/lighttpd/lighttpd-fastcgi-php-" + PID + ".socket", + "bin-path" => "/usr/bin/php-cgi" + ) + ) + ) + +# vim: set ft=conf foldmethod=marker et : diff --git a/www-servers/lighttpd/files/lighttpd.confd b/www-servers/lighttpd/files/lighttpd.confd new file mode 100644 index 0000000..70d4170 --- /dev/null +++ b/www-servers/lighttpd/files/lighttpd.confd @@ -0,0 +1,12 @@ +# /etc/conf.d/lighttpd + +# Location of a shell used by the 'include_shell' directive +# in the lighttpd's configuration file +#export SHELL="/bin/bash" + +# Location of the lighttpd configuration file +LIGHTTPD_CONF="/etc/lighttpd/lighttpd.conf" + +# Location of the lighttpd pid file +LIGHTTPD_PID="/var/run/lighttpd.pid" + diff --git a/www-servers/lighttpd/files/lighttpd.initd-1.4.13-r3 b/www-servers/lighttpd/files/lighttpd.initd-1.4.13-r3 new file mode 100644 index 0000000..80aaacc --- /dev/null +++ b/www-servers/lighttpd/files/lighttpd.initd-1.4.13-r3 @@ -0,0 +1,67 @@ +#!/sbin/runscript +# Copyright 1999-2005 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/www-servers/lighttpd/files/lighttpd.initd-1.4.13-r3,v 1.2 2007/10/12 20:54:46 swegener Exp $ + +opts="reload graceful" + +depend() { + need net + use mysql logger spawn-fcgi ldap slapd + after famd + after sshd +} + +checkconfig() { + if [ ! -f "${LIGHTTPD_CONF}" ] ; then + ewarn "${LIGHTTPD_CONF} does not exist." + return 1 + fi + + /usr/sbin/lighttpd -t -f ${LIGHTTPD_CONF} >/dev/null +} + +start() { + checkconfig || return 1 + + ebegin "Starting lighttpd" + start-stop-daemon --start --quiet --exec /usr/sbin/lighttpd \ + --pidfile "${LIGHTTPD_PID}" -- -f "${LIGHTTPD_CONF}" + eend $? +} + +stop() { + local rv=0 + ebegin "Stopping lighttpd" + start-stop-daemon --stop --quiet --pidfile "${LIGHTTPD_PID}" + eend $? +} + +reload() { + if ! service_started "${SVCNAME}" ; then + eerror "${SVCNAME} isn't running" + return 1 + fi + checkconfig || return 1 + + ebegin "Re-opening lighttpd log files" + start-stop-daemon --stop --oknodo --quiet --pidfile "${LIGHTTPD_PID}" \ + --signal HUP + eend $? +} + +graceful() { + if ! service_started "${SVCNAME}" ; then + eerror "${SVCNAME} isn't running" + return 1 + fi + checkconfig || return 1 + + ebegin "Gracefully stopping lighttpd" + start-stop-daemon --stop --oknodo --quiet --pidfile "${LIGHTTPD_PID}" \ + --signal INT + if eend $? ; then + rm -f "${LIGHTTPD_PID}" + start + fi +} diff --git a/www-servers/lighttpd/files/lighttpd.logrotate b/www-servers/lighttpd/files/lighttpd.logrotate new file mode 100644 index 0000000..76f0ef3 --- /dev/null +++ b/www-servers/lighttpd/files/lighttpd.logrotate @@ -0,0 +1,17 @@ +# $Header: /var/cvsroot/gentoo-x86/www-servers/lighttpd/files/lighttpd.logrotate,v 1.2 2006/05/30 19:49:29 bangert Exp $ +# lighttpd logrotate script for Gentoo + +/var/log/lighttpd/*.log { + daily + missingok + copytruncate + rotate 7 + compress + notifempty + sharedscripts + postrotate + if [ -f /var/run/lighttpd.pid ]; then \ + /etc/init.d/lighttpd reload > /dev/null 2>&1 || true ; \ + fi; + endscript +} diff --git a/www-servers/lighttpd/files/spawn-fcgi.confd b/www-servers/lighttpd/files/spawn-fcgi.confd new file mode 100644 index 0000000..2a88806 --- /dev/null +++ b/www-servers/lighttpd/files/spawn-fcgi.confd @@ -0,0 +1,35 @@ +# Copyright 1999-2004 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/www-servers/lighttpd/files/spawn-fcgi.confd,v 1.1 2005/02/14 11:39:01 ka0ttic Exp $ + +# Configuration file for the FCGI-Part of /etc/init.d/lighttpd + +## Set this to "yes" to enable SPAWNFCGI +ENABLE_SPAWNFCGI="yes" + +## ABSOLUTE path to the spawn-fcgi binary +SPAWNFCGI="/usr/bin/spawn-fcgi" + +## ABSOLUTE path to the PHP binary +FCGIPROGRAM="/usr/bin/php-cgi" + +## bind to tcp-port on localhost +FCGIPORT="1026" + +## number of PHP childs to spawn +PHP_FCGI_CHILDREN=5 + +## number of request server by a single php-process until is will be restarted +PHP_FCGI_MAX_REQUESTS=1000 + +## IP adresses where PHP should access server connections from +FCGI_WEB_SERVER_ADDRS="127.0.0.1" + +# allowed environment variables sperated by spaces +ALLOWED_ENV="PATH USER" +# do NOT change line below +ALLOWED_ENV="$ALLOWED_ENV PHP_FCGI_MAX_REQUESTS FCGI_WEB_SERVER_ADDRS" + +## if this script is run as root switch to the following user +USERID=lighttpd +GROUPID=lighttpd diff --git a/www-servers/lighttpd/files/spawn-fcgi.initd b/www-servers/lighttpd/files/spawn-fcgi.initd new file mode 100644 index 0000000..63daa75 --- /dev/null +++ b/www-servers/lighttpd/files/spawn-fcgi.initd @@ -0,0 +1,51 @@ +#!/sbin/runscript +# Copyright 1999-2004 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/www-servers/lighttpd/files/spawn-fcgi.initd,v 1.2 2007/04/02 12:46:08 uberlord Exp $ + +SPAWNFCGI_PID="/var/run/spawn-fcgi.pid" + +depend() { + need net +} + +start() { + local my_end + + ebegin "Starting spawn-fcgi" + export PHP_FCGI_MAX_REQUESTS FCGI_WEB_SERVER_ADDRS + + EX="${SPAWNFCGI} -p ${FCGIPORT} -f ${FCGIPROGRAM} -u ${USERID} \ + -g ${GROUPID} -C ${PHP_FCGI_CHILDREN}" + + # copy the allowed environment variables + unset E + for i in ${ALLOWED_ENV}; do + E="${E} ${i}=${!i}" + done + + # clean environment and set up a new one + env - ${E} ${EX} 2>${SPAWNFCGI_PID} + my_end=$? + if [ "$my_end" != "0" ]; then + [ -f ${SPAWNFCGI_PID} ] && rm -f ${SPAWNFCGI_PID} + eend $my_end + fi + + #extract parent-process-id and write it back to the file + FCGI_PPID=`cat ${SPAWNFCGI_PID} | cut -d':' -f4` + echo ${FCGI_PPID} > ${SPAWNFCGI_PID} + eend 0 +} + +stop() { + ebegin "Stopping spawn-fcgi" + if ! kill `cat ${SPAWNFCGI_PID}` ; then + eend $? + return 1 + fi + if [ -w ${SPAWNFCGI_PID} ]; then + rm ${SPAWNFCGI_PID} + fi + eend 0 +} diff --git a/www-servers/lighttpd/lighttpd-1.4.20-r1.ebuild b/www-servers/lighttpd/lighttpd-1.4.20-r1.ebuild new file mode 100644 index 0000000..95f279b --- /dev/null +++ b/www-servers/lighttpd/lighttpd-1.4.20-r1.ebuild @@ -0,0 +1,212 @@ +# Copyright 1999-2009 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/www-servers/lighttpd/lighttpd-1.4.20.ebuild,v 1.8 2009/02/03 12:46:51 betelgeuse Exp $ + +inherit eutils autotools depend.php + +DESCRIPTION="Lightweight high-performance web server" +HOMEPAGE="http://www.lighttpd.net/" +SRC_URI="http://www.lighttpd.net/download/${P}.tar.bz2" + +LICENSE="BSD" +SLOT="0" +KEYWORDS="alpha amd64 ~arm hppa ia64 ~mips ppc ppc64 ~sh sparc ~sparc-fbsd x86 ~x86-fbsd" +IUSE="bzip2 doc fam fastcgi gdbm ipv6 ldap lua minimal memcache mysql pcre php rrdtool ssl test webdav xattr" + +# cherokee block should be resolved properly +# http://bugs.gentoo.org/show_bug.cgi?id=224781 +RDEPEND=" + !www-servers/cherokee + >=sys-libs/zlib-1.1 + bzip2? ( app-arch/bzip2 ) + fam? ( virtual/fam ) + gdbm? ( sys-libs/gdbm ) + ldap? ( >=net-nds/openldap-2.1.26 ) + lua? ( >=dev-lang/lua-5.1 ) + memcache? ( dev-libs/libmemcache ) + mysql? ( >=virtual/mysql-4.0 ) + pcre? ( >=dev-libs/libpcre-3.1 ) + php? ( virtual/httpd-php ) + rrdtool? ( net-analyzer/rrdtool ) + ssl? ( >=dev-libs/openssl-0.9.7 ) + webdav? ( + dev-libs/libxml2 + >=dev-db/sqlite-3 + sys-fs/e2fsprogs + ) + xattr? ( kernel_linux? ( sys-apps/attr ) )" + +DEPEND="${RDEPEND} + doc? ( dev-python/docutils ) + test? ( + virtual/perl-Test-Harness + dev-libs/fcgi + )" + +# update certain parts of lighttpd.conf based on conditionals +update_config() { + local config="/etc/lighttpd/lighttpd.conf" + + # enable php/mod_fastcgi settings + use php && \ + dosed 's|#.*\(include.*fastcgi.*$\)|\1|' ${config} + + # enable stat() caching + use fam && \ + dosed 's|#\(.*stat-cache.*$\)|\1|' ${config} +} + +# remove non-essential stuff (for USE=minimal) +remove_non_essential() { + local libdir="${D}/usr/$(get_libdir)/${PN}" + + # text docs + use doc || rm -fr "${D}"/usr/share/doc/${PF}/txt + + # non-essential modules + rm -f \ + ${libdir}/mod_{compress,evhost,expire,proxy,scgi,secdownload,simple_vhost,status,setenv,trigger*,usertrack}.* + + # allow users to keep some based on USE flags + use pcre || rm -f ${libdir}/mod_{ssi,re{direct,write}}.* + use webdav || rm -f ${libdir}/mod_webdav.* + use mysql || rm -f ${libdir}/mod_mysql_vhost.* + use lua || rm -f ${libdir}/mod_{cml,magnet}.* + use rrdtool || rm -f ${libdir}/mod_rrdtool.* + + if ! use fastcgi ; then + rm -f ${libdir}/mod_fastcgi.* "${D}"/usr/bin/spawn-fcgi \ + "${D}"/usr/share/man/man1/spawn-fcgi.* + fi +} + +pkg_setup() { + if ! use pcre ; then + ewarn "It is highly recommended that you build ${PN}" + ewarn "with perl regular expressions support via USE=pcre." + ewarn "Otherwise you lose support for some core options such" + ewarn "as conditionals and modules such as mod_re{write,direct}" + ewarn "and mod_ssi." + ebeep 5 + fi + + use php && require_php_with_use cgi + + enewgroup lighttpd + enewuser lighttpd -1 -1 /var/www/localhost/htdocs lighttpd +} + +src_unpack() { + unpack ${A} + cd "${S}" + + EPATCH_SUFFIX="diff" EPATCH_OPTS="-l" epatch "${FILESDIR}"/"${PVR}" || die "Patching failed!" + + eautoreconf || die + + # dev-python/docutils installs rst2html.py not rst2html + sed -i -e 's|\(rst2html\)|\1.py|g' doc/Makefile.in || \ + die "sed doc/Makefile.in failed" + + # fix typo + sed -i -e 's|\(output_content\)_\(type\)|\1\2|' doc/cml.txt || \ + die "sed doc/cml.txt failed" +} + +src_compile() { + econf --libdir=/usr/$(get_libdir)/${PN} \ + --enable-lfs \ + $(use_enable ipv6) \ + $(use_with bzip2) \ + $(use_with fam) \ + $(use_with gdbm) \ + $(use_with lua) \ + $(use_with ldap) \ + $(use_with memcache) \ + $(use_with mysql) \ + $(use_with pcre) \ + $(use_with ssl openssl) \ + $(use_with webdav webdav-props) \ + $(use_with webdav webdav-locks) \ + $(use_with xattr attr) \ + || die "econf failed" + + emake || die "emake failed" + + if use doc ; then + einfo "Building HTML documentation" + cd doc + emake html || die "failed to build HTML documentation" + fi +} + +src_install() { + emake DESTDIR="${D}" install || die "make install failed" + + # init script stuff + newinitd "${FILESDIR}"/lighttpd.initd-1.4.13-r3 lighttpd || die + newconfd "${FILESDIR}"/lighttpd.confd lighttpd || die + use fam && has_version app-admin/fam && \ + sed -i 's/after famd/need famd/g' "${D}"/etc/init.d/lighttpd + + if use php || use fastcgi ; then + newinitd "${FILESDIR}"/spawn-fcgi.initd spawn-fcgi || die + newconfd "${FILESDIR}"/spawn-fcgi.confd spawn-fcgi || die + fi + + # configs + insinto /etc/lighttpd + doins "${FILESDIR}"/conf/lighttpd.conf + doins "${FILESDIR}"/conf/mime-types.conf + doins "${FILESDIR}"/conf/mod_cgi.conf + newins "${FILESDIR}"/conf/mod_fastcgi.conf-1.4.13-r2 mod_fastcgi.conf + # Secure directory for fastcgi sockets + keepdir /var/run/lighttpd/ + fperms 0750 /var/run/lighttpd/ + fowners lighttpd:lighttpd /var/run/lighttpd/ + + # update lighttpd.conf directives based on conditionals + update_config + + # docs + dodoc AUTHORS README NEWS ChangeLog doc/*.sh + newdoc doc/lighttpd.conf lighttpd.conf.distrib + + use doc && dohtml -r doc/* + + docinto txt + dodoc doc/*.txt + + # logrotate + insinto /etc/logrotate.d + newins "${FILESDIR}"/lighttpd.logrotate lighttpd || die + + keepdir /var/l{ib,og}/lighttpd /var/www/localhost/htdocs + fowners lighttpd:lighttpd /var/l{ib,og}/lighttpd + fperms 0750 /var/l{ib,og}/lighttpd + + use minimal && remove_non_essential +} + +pkg_postinst () { + echo + if [[ -f ${ROOT}etc/conf.d/spawn-fcgi.conf ]] ; then + einfo "spawn-fcgi is now included with lighttpd" + einfo "spawn-fcgi's init script configuration is now located" + einfo "at /etc/conf.d/spawn-fcgi." + echo + fi + + if [[ -f ${ROOT}etc/lighttpd.conf ]] ; then + ewarn "As of lighttpd-1.4.1, Gentoo has a customized configuration," + ewarn "which is now located in /etc/lighttpd. Please migrate your" + ewarn "existing configuration." + ebeep 5 + fi + + if use fam ; then + einfo "Remember to re-emerge lighttpd should you switch from" + einfo "app-admin/famd to app-admin/gamin or vice versa." + fi + echo +} diff --git a/www-servers/lighttpd/metadata.xml b/www-servers/lighttpd/metadata.xml new file mode 100644 index 0000000..1145e9b --- /dev/null +++ b/www-servers/lighttpd/metadata.xml @@ -0,0 +1,23 @@ + + + + www-servers + + hoffie@gentoo.org + + + lighttpd a secure, fast, compliant and very flexible web-server + which has been optimized for high-performance environments. It has a very + low memory footprint compared to other webservers and takes care of cpu-load. + Its advanced feature-set (FastCGI, CGI, Auth, Output-Compression, + URL-Rewriting and many more) make lighttpd the perfect webserver-software + for every server that is suffering load problems. + + + Enable memcache support for mod_cml and + mod_trigger_b4_dl + Enable rrdtool support via mod_rrdtool + Enable webdav properties + + + -- cgit v1.2.3-65-gdbad