sdgoij/caddy
1
0
Fork 0
mirror of https://github.com/caddyserver/caddy.git synced 2026-03-17 14:34:03 +00:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 8499e34e10 caddytls: Ensure key list always gets set (fix #7555) master Matthew Holt 2026-03-16 16:21:47 -06:00
  • 2db3b802ca caddytls: Consoldate empty APs more smartly (fix #7559) fix-ap-consolidation Matthew Holt 2026-03-12 18:22:05 -06:00
  • 6cef20d257 caddytls: Enable ECH on the "gotten" tls.Config instead of the "getter" fix-ech Matthew Holt 2026-03-12 15:42:47 -06:00
  • 1fbb28720b Fix lint errors Matthew Holt 2026-03-11 13:33:59 -06:00
  • ffb6ab0644 Revert cosign (see #7536) v2.11.2 Matthew Holt 2026-03-05 08:41:54 -07:00
  • 9371ee67c6 build(deps): bump the actions-deps group across 1 directory with 12 updates (#7536) dependabot[bot] 2026-03-04 21:29:44 -07:00
  • 5d20adc7a9 build(deps): bump github.com/smallstep/certificates (#7535) dependabot[bot] 2026-03-04 21:26:18 -07:00
  • 6e5e08cf58 Wire up Cause for most context cancels (#7538) Francis Lavoie 2026-03-04 19:14:52 -05:00
  • fbfb8fc517 rewrite: Force recomputing path when escaped path matches rewrite target Matthew Holt 2026-03-04 16:18:33 -07:00
  • e06dfcf6ed Update SECURITY.md Matt Holt 2026-03-04 16:16:24 -07:00
  • 566e710991 fileserver: document hide case-sensitivity (F-CADDY-FILESERVER-HIDE-CASE-001) (#7548) Oleh Konko | semantic verification for trust infra | LLM-augmented operations pipeline (precision-first, claim≤evidence, submit-human) | verify the payload, not the signer 2026-03-04 23:00:10 +01:00
  • a5e7c6e232 reverseproxy: prevent body close on dial-error retries (#7547) Tom Paulus 2026-03-04 12:17:02 -08:00
  • db2986028f reverseproxy: Track dynamic upstreams, enable passive healthchecking (#7539) Francis Lavoie 2026-03-04 15:05:26 -05:00
  • 7e83775e3a Merge commit from fork Sam.An 2026-03-05 01:08:39 +09:00
  • 2dbcdefbbe forward_auth: copy_headers does not strip client-supplied identity headers (Fixes GHSA-7r4p-vjf4-gxv4) (#7545) newklei 2026-03-03 23:30:49 -05:00
  • dc36082859 caddyhttp: Collect metrics once per route instead of per handler (#7492) Varun Chawla 2026-03-03 14:15:55 -08:00
  • 88616e86e6 api: Add all in-flight requests /reverse_proxy/upstreams (Fixes #7277) (#7517) Paulo Henrique 2026-03-03 19:14:55 -03:00
  • 7b34e3107e core: Check whether @id is unique (#7002) Salent Olivick 2026-03-04 06:09:49 +08:00
  • a6acb3902c proxyproto: Generated test coverage (#7540) Francis Lavoie 2026-03-03 17:08:09 -05:00
  • 45cf61b127 logging: Ensure slog error level logs don't print stack traces (#7512) Francis Lavoie 2026-03-03 16:44:42 -05:00
  • d935a6956c autohttps: Ensure CertMagic config is recreated after autohttps runs (#7510) Francis Lavoie 2026-03-03 16:44:06 -05:00
  • 2dd3852416 fix(caddyfile): Prevent parser to panic when no token were added by empty {block} (#7543) prettysunflower 2026-03-03 13:16:21 -05:00
  • 11b56c6cfc reverseproxy: Fix health_port being ignored in health checks (#7533) Akın Demirci 2026-03-03 21:10:54 +03:00
  • f283062d37 cmd: Custom binary names through CustomBinaryName and CustomLongDescription (#7513) Alexandre Daubois 2026-03-02 12:04:28 +01:00
  • 2ab043b890 reverseproxy: query escape request urls when proxy protocol is enabled (#7537) WeidiDeng 2026-03-02 15:04:06 +08:00
  • 2ad19885b5 rewrite: Add option to force modifying the query rewrite-modify-query Francis Lavoie 2023-03-16 17:17:12 -04:00
  • f145bce553 tls: Add tls_resolvers global option for DNS challenge configuration (#7297) Pavel Siomachkin 2026-03-01 21:32:04 +01:00
  • 174fa2ddb9 caddyhttp: Evaluate tls.client placeholders more accurately (fix #7530) (#7534) Matt Holt 2026-02-28 22:03:18 -07:00
  • cd9e1660aa cmd: Pass configFile, not configFlag, for reload command (#7532) Matt Holt 2026-02-27 15:24:05 -07:00
  • 06a05e383c Revert "encode: Implement Flush for legacy compatibility" Matthew Holt 2026-02-27 14:14:19 -07:00
  • ce203aa9e1 go.mod: Upgrade x/net Matthew Holt 2026-02-27 10:35:24 -07:00
  • eac02ee98f caddyhttp: Limit empty Host check to HTTP/1.1 Matthew Holt 2026-02-27 10:22:39 -07:00
  • 72eaf2583a chore: Enable modernize linter (#7519) Oleksandr Redko 2026-02-26 23:01:35 +02:00
  • 9798f6964d caddyhttp: Avoid nil pointer dereference in proxyWrapper (#7521) Fardjad Davari 2026-02-25 10:08:41 +01:00
  • 9873752978 logging: Support zstd roll compression (#7515) Francis Lavoie 2026-02-23 18:04:45 -05:00
  • 294dfff443 logging: add DirMode options and propagate FileMode to rotations (#7335) Dean Ruina 2026-02-23 09:27:27 +02:00
  • 76b198f586 http: Sort auto-HTTPS redirect routes by host specificity (fixes #7390) (#7502) Paulo Henrique 2026-02-21 23:42:40 -03:00
  • 7ffb640a4d httpcaddyfile: Fix missing TLS connection policies when auto_https is default (#7325) (#7507) Paulo Henrique 2026-02-21 23:42:03 -03:00
  • d7b21c6104 reverseproxy: fix tls dialing w/ proxy protocol (#7508) Mohammed Al Sahaf 2026-02-22 05:37:10 +03:00
  • 6610e2f1bd chore: Disable windows/arm build target (Go 1.26 disabled) (#7503) v2.11.1 Francis Lavoie 2026-02-20 17:47:21 -05:00
  • 0998c732a4 Release proposal for v2.11.0 release_proposal-v2.11.0 github-actions[bot] 2026-02-20 19:46:34 +00:00
  • 03243e42fe go.mod: Upgrade dependencies v2.11.0 Matthew Holt 2026-02-20 12:28:11 -07:00
  • cb436f0a0e fileserver: Fix tests on Windows Matthew Holt 2026-02-20 11:46:45 -07:00
  • a1081194bf Merge commit from fork Matt Holt 2026-02-20 10:54:50 -07:00
  • eec32a0bb5 Merge commit from fork Asim Viladi Oglu Manizada 2026-02-20 09:19:42 -08:00
  • a2825c5dd9 fileserver: Replace \ with \\ in file matcher paths Matthew Holt 2026-02-19 13:17:19 -07:00
  • db256b53e5 build(deps): bump filippo.io/edwards25519 from 1.1.0 to 1.1.1 (#7497) dependabot[bot] 2026-02-19 14:20:06 -05:00
  • 6772ffb805 Revert "listeners: Add support for named socket activation (#7243)" Matthew Holt 2026-02-19 11:32:26 -07:00
  • d6f2a05f8d caddyhttp: Normalize hosts in provision host-match Matthew Holt 2026-02-18 09:03:49 -07:00
  • 95941a71e8 chore: Add nolints to work around haywire linters (#7493) Matt Holt 2026-02-17 16:52:54 -07:00
  • 3adcafd4c1 admin: Fix tests locally, properly isolate storage (#7486) Francis Lavoie 2026-02-17 15:14:06 -05:00
  • 091add5ae3 caddytest: make TestReverseProxyHealthCheck deterministic with poll instead of sleep (#7474) Amirhf 2026-02-17 15:11:38 +03:30
  • 163910e74e encode: Implement Flush for legacy compatibility stripe Matthew Holt 2026-02-16 15:59:10 -07:00
  • bdcdaf77ba encode: Implement Flush for legacy compatibility Matthew Holt 2026-02-16 15:59:10 -07:00
  • 9fe694c79c caddytls: Enable debug logging for DNSManager (#7491) Francis Lavoie 2026-02-16 17:38:56 -05:00
  • b8b00d9160 chore: fix some comments to improve readability (#7395) wangjingcun 2026-02-17 03:41:21 +08:00
  • 68d50020ee refactor: use strings.Builder to improve performance (#7364) zjumathcode 2026-02-17 03:30:44 +08:00
  • 8a18acc025 build(deps): bump the all-updates group across 1 directory with 12 updates (#7490) dependabot[bot] 2026-02-16 13:38:55 -05:00
  • 23d07ac89d dep: upgrade cel-go (#7478) Mohammed Al Sahaf 2026-02-16 21:25:49 +03:00
  • d64c7e67a4 caddyhttp: Option to disable 0-RTT (#7485) Francis Lavoie 2026-02-16 12:20:47 -05:00
  • ff4f79aebe chore: Remove obsolete comment in ech.go (#7487) Francis Lavoie 2026-02-16 12:17:01 -05:00
  • f2213e943e chore: Bump zerossl dependency to 0.1.5 (#7489) Francis Lavoie 2026-02-16 12:08:29 -05:00
  • affbb99275 pki: add per-CA configurable maintenance_interval and renewal_window_ratio (#7479) Amirhf 2026-02-15 17:40:12 +03:30
  • d6a6b486db httpcaddyfile: Override global dns with acme_dns (fix #7294) (#7458) Aditya Bhargava 2026-02-15 04:04:59 -05:00
  • 929d0e502a caddyfile: Add renewal_window_ratio global option and tls subdirective (#7473) mehrdadbn9 2026-02-14 01:17:02 +03:30
  • 6718bd470f caddytls: Finish removing prefer_wildcard Matthew Holt 2026-02-12 11:35:28 -07:00
  • 80bf81839d go.mod: update nebula v1.10.3 to resolve cve (#7471) Omer Cohen 2026-02-12 17:54:48 +02:00
  • d42d39b4bc caddytls: Return errors instead of nil in client auth provisioning (#7464) moscowchill 2026-02-12 23:42:54 +08:00
  • 0188ef2e62 acmeserver: warn when policy rules unset (#7469) Oleh Konko | trust infra security audit & contribution | deterministic ai-augmented pipeline · human-verified 2026-02-11 18:54:51 +00:00
  • c0af7b665f chore: bump Go to v1.26 (#7466) Francis Lavoie 2026-02-11 13:21:10 -05:00
  • 72ac479f5d admin: Enforce origin implicitly based on request headers Matthew Holt 2026-02-11 09:52:56 -07:00
  • 47f3e8f8dc use math/rand/v2 instead of math/rand (#7413) WeidiDeng 2026-02-12 00:15:51 +08:00
  • 03e6e439dd reverseproxy: fix X-Forwarded-* headers for Unix socket requests (#7463) XYenon 2026-02-11 04:00:20 +08:00
  • 7c28c0c07a Merge commit from fork Kévin Dunglas 2026-02-10 19:52:36 +01:00
  • 96f142c2a6 Update SECURITY.md Matt Holt 2026-02-10 11:44:40 -07:00
  • 5ff50779cc Update LLM disclosure requirements in SECURITY.md Matt Holt 2026-02-09 14:40:41 -07:00
  • 1f43e8566b caddyhttp: Use case-insensitive comparison for large Host lists Matthew Holt 2026-02-09 14:18:55 -07:00
  • bd374ca9d7 caddyhttp: Lowercase comparison when matching with escape sequence Matthew Holt 2026-02-09 09:43:07 -07:00
  • 2ae0f7af69 reverseproxy: Set Host to {upstream_hostport} automatically if TLS (#7454) Francis Lavoie 2026-02-09 15:06:19 -05:00
  • b499a1a823 reverseproxy: do not disable keepalive if proxy protocol is used (#7300) WeidiDeng 2025-10-21 13:09:37 +08:00
  • 58968b3fd3 Update detail in readme Matthew Holt 2026-02-06 08:45:09 -07:00
  • 42ca010e9d admin: Reject requests with Sec-Fetch-Mode headers Matthew Holt 2026-02-05 09:39:11 -07:00
  • 40927d2f75 Require disclosure of LLM usage in security reports Matt Holt 2026-02-05 06:12:26 -07:00
  • e0f8d9b204 caddytls: Check type assertion Matthew Holt 2026-02-03 13:59:53 -07:00
  • 780640d1e7 caddyhttp: Don't append port 0 (fix #7450) fix0port Matthew Holt 2026-02-03 13:29:07 -07:00
  • 99231c12ef reverseproxy: Customizable dial network for SRV upstreams Matthew Holt 2026-02-02 11:25:51 -07:00
  • 3bb22672f9 reverseproxy: Customizable dial network for SRV upstreams Matthew Holt 2026-02-02 11:25:51 -07:00
  • 935b09de83 caddtls: Skip .ts.net domains for ECH (#6971) Matthew Holt 2026-01-30 12:24:59 -07:00
  • 7d24124430 caddyhttp: Reject invalid Host header (fix #7449) Matthew Holt 2026-01-30 12:24:16 -07:00
  • 565c1c3054 autohttps: deterministic logic and strict bind checking on Linux (#7435) Paulo Henrique 2026-01-16 12:51:23 -03:00
  • d269405eab core: Show JSON error offsets where possible (#7437) Francis Lavoie 2026-01-14 22:54:19 -05:00
  • e40bd019ff caddyfile: add observe_catchall_hosts option (#7434) Mohammed Al Sahaf 2026-01-14 03:06:16 +03:00
  • cbebc1292b core: Embed time/tzdata (#7432) Francis Lavoie 2026-01-13 17:11:35 -05:00
  • e9d290de2f caddyconfig: Fix indentation of multiline strings in fmt (#7425) (#7433) Paulo Henrique 2026-01-13 17:22:23 -03:00
  • 62134d65af reverseproxy: fix error when remote address is not an IP (#7429) Paulo Henrique 2026-01-13 16:52:56 -03:00
  • 5168acfb9c update quic-go to v0.59.0 (#7431) Marten Seemann 2026-01-14 03:47:36 +08:00
  • 90972fbebc chore: Dumb prealloc lint fix (#7430) Francis Lavoie 2026-01-13 14:13:43 -05:00
  • 28103aafba Revise top of readme to include Warp sponsorship section Matthew Holt 2026-01-06 16:44:11 -07:00
  • 6a57142896 headers: Make ApplyTo nil-safe (#7426) Tom Paulus 2026-01-06 14:39:58 -08:00
  • 80f2ae92cd reverseproxy: make error chan bigger when reverse proxying websocket (#7419) WeidiDeng 2026-01-06 17:55:47 +08:00