? caddy.diff
Index: Makefile
===================================================================
RCS file: /cvs/ports/www/caddy/Makefile,v
diff -u -p -u -p -r1.5 Makefile
--- Makefile 27 Feb 2026 15:18:29 -0000 1.5
+++ Makefile 11 Mar 2026 04:41:28 -0000
@@ -1,7 +1,7 @@
COMMENT= extensible HTTP/1-2-3 web server
MODGO_MODNAME= github.com/caddyserver/caddy/v2
-MODGO_VERSION= v2.11.1
+MODGO_VERSION= v2.11.2
REVISION= 0
DISTNAME= caddy-${MODGO_VERSION}
@@ -23,4 +23,4 @@ post-install:
${PREFIX}/share/examples/caddy
.include "modules.inc"
-.include <bsd.port.mk>
+.include "bsd.port.mk"
Index: distinfo
===================================================================
RCS file: /cvs/ports/www/caddy/distinfo,v
diff -u -p -u -p -r1.4 distinfo
--- distinfo 27 Feb 2026 15:18:29 -0000 1.4
+++ distinfo 11 Mar 2026 04:41:29 -0000
@@ -1,4 +1,4 @@
-SHA256 (caddy-v2.11.1.zip) = 5YeGLvzcGMHrUvdiMy6fdHx09YHz08+NW+NeMtxnpbk=
+SHA256 (caddy-v2.11.2.zip) = YQdt0p0i+hC8DLZS6ruR4rWdLjIZX0Qrm2/uycHCE5Y=
SHA256 (go_modules/4d63.com/gocheckcompilerdirectives/@v/v1.3.0.mod) = sk3x3bP2PBVMSVG84j2pGZskzyKtQGR+RRcV1Rmugi0=
SHA256 (go_modules/4d63.com/gocheckcompilerdirectives/@v/v1.3.0.zip) = U/JVRL4bukwvZXr4orgkXbvne+KqYOOG6ZsOG8g2xWU=
SHA256 (go_modules/4d63.com/gochecknoglobals/@v/v0.2.2.mod) = +vTMeGg/7mNwaqzultYYkgtmcYiv3ARf+MVSN0KYdBw=
@@ -1441,7 +1441,7 @@ SHA256 (go_modules/mvdan.cc/unparam/@v/v
SHA256 (go_modules/mvdan.cc/unparam/@v/v0.0.0-20250301125049-0df0534333a4.zip) = GykA3OAfe3c5kUOFvtaoiNqpIWt+5fosiPI1wp1T0+0=
SHA256 (go_modules/sigs.k8s.io/yaml/@v/v1.4.0.mod) = CZ2G+OBNET1A9KFSzf4AFxFtfv6mjkF6nGRthgJj174=
SHA256 (go_modules/sigs.k8s.io/yaml/@v/v1.4.0.zip) = 7wMf94/5twNuF07vSd+9d0aNxPCvtzpjm2H4qzocxCU=
-SIZE (caddy-v2.11.1.zip) = 1140036
+SIZE (caddy-v2.11.2.zip) = 1177665
SIZE (go_modules/4d63.com/gocheckcompilerdirectives/@v/v1.3.0.mod) = 198
SIZE (go_modules/4d63.com/gocheckcompilerdirectives/@v/v1.3.0.zip) = 7154
SIZE (go_modules/4d63.com/gochecknoglobals/@v/v0.2.2.mod) = 167Per upstream:
>Reverse proxy got a lot of love with certain edge cases related to PROXY protocol, health check port, and closing body on retries. Dynamic upstreams are now tracked which enables passive health checking.
>Performance improvements for metrics.
>New tls_resolvers global option to control DNS resolvers for all sites when using the ACME DNS challenge.
>Log rolling now supports zstd compression; deprecated roll_gzip, which will be removed in the future. Use roll_compression instead.
>Refined logging and some error messages.
>Fixed a bug in rewrite handler that could cause some URIs to not be rewritten when URI path is an escaped form of target path. Thanks to @MaherAzzouzi for the report.
>Security fixes
>This release fixes two CVEs.
>@NucleiAv reported a bug in the forward_auth directive that could permit identity injection and potential privilege escalation.
>@sammiee5311 reported that vars_regexp double-expanded placeholders, allowing some unusual configs to reveal secrets.
Please find diff attached. OK?
No comments:
Post a Comment