Accepting request 1271292 from server:http

OBS-URL: https://build.opensuse.org/request/show/1271292
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/caddy?expand=0&rev=29

_service

@@ -6,7 +6,7 @@
     <param name="filename">caddy</param>
     <param name="versionformat">@PARENT_TAG@</param>
     <param name="versionrewrite-pattern">v(.*)</param>
-    <param name="revision">v2.8.4</param>
+    <param name="revision">v2.10.0</param>
     <param name="changesgenerate">enable</param>
   </service>
   <service mode="manual" name="set_version">

_servicedata

@@ -1,4 +1,4 @@
 <servicedata>
 <service name="tar_scm">
                 <param name="url">https://github.com/caddyserver/caddy.git</param>
-              <param name="changesrevision">7088605cc11c52c2777ab613dfc5c2a9816006e4</param></service></servicedata>
+              <param name="changesrevision">fb22a26b1a08a2fa3b2526d1852467904ee140f6</param></service></servicedata>

caddy-2.10.0.tar.gz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:4ade78672be560cf11775070e7fe45dac5233913f1027ea96bd3713174189c11
+size 745531

caddy-2.8.4.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:687ce74e4ccca742148e4352085f82f1fe1885a6fbee26dbde84618c44012518
-size 678881

caddy.changes

@@ -1,3 +1,256 @@
+-------------------------------------------------------------------
+Fri Apr 18 21:15:07 UTC 2025 - Jeff Kowalczyk <jkowalczyk@suse.com>
+
+- Update to version 2.10.0:
+  * caddytls: Allow missing ECH meta file
+  * caddytls: Prefer managed wildcard certs over individual subdomain certs (#6959)
+  * caddytls: Add remote_ip to HTTP cert manager (close #6952)
+  * build(deps): bump golang.org/x/net from 0.37.0 to 0.38.0 (#6960)
+  * caddyauth: Set authentication provider error in placeholder (#6932)
+  * go.mod: Upgrade acmez and certmagic
+  * admin: Remove host checking for UDS (close #6832)
+  * reverseproxy: Add valid Upstream to DialInfo in active health checks (#6949)
+  * Fix the incorrect parameter order (#6951)
+  * chore: fix comment (#6950)
+  * caddyhttp: Document side effect of HTTP/3 early data (close #6936)
+  * go.mod: Upgrade to libdns 1.0 beta APIs (requires upgraded DNS providers)
+  * events: Refactor; move Event into core, so core can emit events (#6930)
+  * caddytls: Temporarily treat "" and "@" as equivalent for DNS publication
+  * go.mod: Upgrade CertMagic
+  * go.mod: Minor dependency upgrades
+  * caddytls: Don't publish HTTPS record for CNAME'd domain (fix #6922)
+  * core: add modular `network_proxy` support (#6399)
+  * update quic-go to v0.50.1 (#6918)
+  * chore: Modernize a couple for loops
+  * caddytls: Initialize permission module earlier (fix #6901)
+  * caddyfile: Fix formatting for backquote wrapped braces (#6903)
+  * caddytls: Convert AP subjects to punycode
+  * caddytls: Don't publish ECH configs if other records don't exist
+  * requestbody: Fix ContentLength calculation after body replacement (#6896)
+  * requestbody: Add set option to replace request body (#5795)
+  * headers: Allow nil HeaderOps (fix #6893)
+  * caddytls: Minor fixes for ECH
+  * caddytls: Fix TrustedCACerts backwards compatibility (#6889)
+  * caddytls: Pointer receiver (fix #6885)
+  * caddyfile: add error handling for unrecognized subdirective/options in various modules (#6884)
+  * reverseproxy: more comments about buffering and add new tests (#6778)
+  * chore: Remove unnecessary explicit type parameters
+  * caddytls: Reorder provisioning steps (fix #6877)
+  * ci: fix Go matrix (#6846)
+  * caddytls: Only make DNS solver if not already set (fix #6880)
+  * cmd: Promote undo maxProcs func to caller
+  * cmd: Only set memory/CPU limits on run (fix #6879)
+  * caddypki: Remove lifetime check at Caddyfile parse (fix #6878)
+  * go.mod: Upgrade dependencies
+  * caddytls: Fix broken refactor
+  * caddytls: Enhance ECH documentation
+  * Update min go version in readme
+  * readme: update Twitter name and link (#6874)
+  * build(deps): bump github.com/cloudflare/circl from 1.3.3 to 1.3.7 (#6876)
+  * caddytls: Encrypted ClientHello (ECH) (#6862)
+  * build(deps): bump github.com/go-jose/go-jose/v3 from 3.0.3 to 3.0.4 (#6871)
+  * chore: upgrade cobra (#6868)
+  * Fix typo in TLS group x25519mlkem768
+  * caddytest: Support configuration defaults override (#6850)
+  * chore: update quic-go to v0.50.0 (#6854)
+  * go.mod: remove glog dependency (#6838)
+  * chore: ci: upgrade Go version to 1.24 (#6839)
+  * tests: tests for error handling & metrics in admin endpoints (#6805)
+  * caddytls: Support post-quantum key exchange mechanism X25519MLKEM768
+  * file_server: use the UTC timezone for modified time (#6830)
+  * Revert "logging: Always set fields func; fix #6829"
+  * logging: Always set fields func; fix #6829
+  * admin: fix index validation for PUT requests (#6824)
+  * reverseproxy: ignore duplicate collector registration error (#6820)
+  * build(deps): bump github.com/golang/glog from 1.2.2 to 1.2.4 (#6814)
+  * fix: update broken link to Ardan Labs (#6800)
+  * reverse_proxy: re-add healthy upstreams metric (#6806)
+  * caddytls: Refactor sni matcher (#6812)
+  * cmd: automatically set GOMEMLIMIT (#6809)
+  * caddyhttp: ResponseRecorder sets stream regardless of 1xx
+  * caddytls: Fix sni_regexp matcher to obtain layer4 contexts (#6804)
+  * chore: don't use deprecated `archives.format_overrides.format` (#6807)
+  * chore: update quic-go to v0.49.0 (#6803)
+  * go.mod: Upgrade CertMagic to v0.21.7
+  * reverseproxy: Via header (#6275)
+  * logging: Fix crash if logging error is not HandlerError (#6777)
+  * caddytls: Initial support for ACME profiles
+  * fastcgi: improve parsePHPFastCGI docs (#6779)
+- Packaging improvements:
+  * Update to BuildRequires: golang(API) >= 1.24 matching go.mod
+  * Use BuildRequires: two-digit golang(API) >= 1.x rather than
+    three digit 1.x.y default from go mod init defaults. Currently
+    the Provides: golang(API) expression is major version
+    (two-digit) only. We ship new go releases sufficiently quickly
+    that this has not often been an issue. Consideration is being
+    given to the best way to handle the new three digit go.mod
+    required minimum Go version.
+
+-------------------------------------------------------------------
+Sun Jan 12 17:06:12 UTC 2025 - eric.torres@its-et.me
+
+- Update to version 2.9.1:
+  * go.mod: UPgrade CertMagic to 0.21.6 (fix ARI handshake maintenance)
+  * header: `match` subdirective for response matching (#6765)
+  * log: Only chmod if permission bits differ; make log dir (#6761)
+  * fix: disable h3 for unix domain socket (#6769)
+  * reverseproxy: buffer requests for fastcgi by default (#6759)
+  * core: Only initiate exit once (should fix #6707)
+
+-------------------------------------------------------------------
+Sun Jan 12 17:05:17 UTC 2025 - eric.torres@its-et.me
+
+- Update to version 2.9.0:
+  * go.mod: Upgrade CertMagic to v0.21.5
+  * testing: sort force-automated hosts (#6756)
+  * httpcaddyfile: Implement experimental `force_automate` option (#6712)
+  * encode: try to use sendfile when compression is not used (#6749)
+  * caddyhttp: Allow matching Transfer-Encoding, add to access logs (#6629)
+  * go.mod: Upgrade ACMEz to v3; and upgrade CertMagic
+  * cmd: Disable go1.23 tlskyber=1 experiment
+  * Update SECURITY.md
+  * fastcgi: check for CONTENT_LENGTH when sending requests (#6661)
+  * reverseproxy: Set Content-Length when body is fully buffered (#6638)
+  * core: Change ListenerFunc signature (#6651)
+  * reverseproxy: Only handle websocket protocol (#6740)
+  * encode: write status immediate for success response for CONNECT requests (#6738)
+  * encode: good defaults (#6737)
+  * fileserver: add a test for precompressed defaults (#6743)
+  * fileserver: good default for precompressed (#6736)
+  * chore: fix some typo in HTTPLoader comment (#6735)
+  * reverseproxy: Rewrite requests and responses for websocket over http2 (#6567)
+  * chore: bump golang.org/x/net to v0.32.0 (#6728)
+  * fileserver: Fix policy `Validate()` oversight (#6727)
+  * cmd: Reject multiple configs for fmt command (#6717)
+  * fileserver: Add `first_exist_fallback` strategy for `try_files` (#6699)
+  * caddyhttp: Add `{?query}` placeholder (#6714)
+  * ci: prevent jobs running on PRs from forks (#6720)
+  * go.mod: Upgrade quic-go to 0.48.2
+  * metrics: add `go` and `process` collectors (#6704)
+  * requestbody: Type-based error handling for `MaxBytesError` (#6701)
+  * fastcgi: remove dir redirection when useless in php_fastcgi (#6698)
+  * caddyhttp: Set default ReadHeaderTimeout (1 min)
+  * cmd: ignore missing keys during storage export (#6697)
+  * chore: make FastAbs comment more easy to understand (#6692)
+  * chore: Add `provides` to `.deb` releases (#6691)
+  * core: Implement FastAbs to avoid repeated os.Getwd calls (#6687)
+  * reverseproxy: Revert #4952 - don't ignore context cancellation in stream mode
+  * httpcaddyfile: Implement log `sampling` config (#6682)
+  * reverseproxy: Allow `0` as weights for `weighted_round_robin` (#6681)
+  * ci: use commit sha in goreleaser-check (#6677)
+  * go.mod: Update certmagic
+  * caddytls: Allow disabling storage cleaning, avoids writing two files (#6593)
+  * rewrite: Don't add / in Caddyfile, do it after replacer (#6662)
+  * fileserver: Add `file_limit` option for browse (to be experimental) (#6648)
+  * go.mod: upgrade only some otel deps (#6676)
+  * caddyhttp: Add `MatchWithError` to replace SetVar hack (#6596)
+  * Fix tests
+  * forwardauth: Skip copying missing response headers (#6608)
+  * go.mod: Update dependencies
+  * events: Use `WithLazy` to prevent eager serialization of the event data (#6671)
+  * fileserver: Fix Caddyfile parsing
+  * httpcaddyfile: Fixes for `prefer_wildcard` mode (#6636)
+  * cmd: Allow `add-package` to select version of package (#6665)
+  * chore: compile without nosql's support for Postgres and MySQL (#6655)
+  * chore: Bump quic-go to 0.48.1, fixing a panic (#6654)
+  * reverseproxy: Sync changes from stdlib for 1xx handling (#6656)
+  * reverseproxy: Fix log message
+  * tracing: Add `spanID` field to access logs and `http.vars.span_id` placeholder (#6646)
+  * core: addresses.go funcs renames (#6622)
+  * chore: fix some function names in comment (#6650)
+  * fileserver: fix try_policy when instantiating file matcher from CEL (#6624)
+  * sigtrap: always ignore SIGPIPE (#6645)
+  * metrics: move `metrics`  up, outside `servers` (#6606)
+  * caddyhttp: Close http3 server gracefully (#6213)
+  * chore: update quic-go to v0.48.0 (#6627)
+  * reverseproxy: Use correct cases for websocket related headers (#6621)
+  * caddyfile: Fix comma edgecase in address parsing (#6616)
+  * docs: expand proxy protocol docs (#6620)
+  * tests: fix caddyfile adapt warnings (#6619)
+  * caddytls: Drop `rate_limit` and `burst`, has been deprecated (#6611)
+  * caddyhttp: Use internal issuer for IPs when no APs configured
+  * go.mod: Upgrade some dependencies
+  * ci: install xcaddy to fix release flow (#6602)
+  * metrics: scope metrics to active config, add optional per-host metrics (#6531)
+  * caddyhttp: Implement `auto_https prefer_wildcard` option (#6146)
+  * caddyhttp: Escaping placeholders in CEL, add `vars` and `vars_regexp` (#6594)
+  * cmd: Better error handling when reloading (#6601)
+  * caddytls: Support new tls.context module (#6369)
+  * http: ReponseWriter prefer ReadFrom if available (#6565)
+  * chore: Adjust incorrect `reverse_proxy` Caddyfile comment (#6598)
+  * caddyhttp: Fix listener wrapper regression from #6573 (#6599)
+  * core: Implement socket activation listeners (#6573)
+  * doc: remove docs of deprecated directives (#6566)
+  * caddyhttp: Optimize logs using zap's WithLazy() (#6590)
+  * chore: Use slices package where possible (#6585)
+  * caddytls: Give a better error message when given encrypted private keys (#6591)
+  * caddyhttp: enable qlog, controlled by QLOGDIR env (#6581)
+  * update quic-go to v0.47.0 (#6582)
+  * ci: update the linter action version (#6575)
+  * perf: use zap's Check() to prevent useless allocs (#6560)
+  * rewrite: Avoid panic on bad arg count for `uri` (#6571)
+  * caddytls: Add sni_regexp matcher (#6569)
+  * caddyhttp: Make route provisioning idempotent (#6558)
+  * reverse_proxy: add placeholder http.reverse_proxy.retries (#6553)
+  * fileserver: browse: Configurable default sort (#6502)
+  * rewrite: Only serialize request if necessary (#6541)
+  * ci: prepare syso files for windows embedding in release (#6406)
+  * tls: use Go default kex for the moment that include PQC (#6542)
+  * ci: build and test with Go 1.23 (#6526)
+  * reverseproxy: allow user to define source address (#6504)
+  * caddyhttp: run `error` (msg) through replacer (#6536)
+  * chore: Fix a typo (#6534)
+  * cmd: Use a factory to create the caddy root command (#6533)
+  * reverseproxy: Change errors writing the response to warning. (#6532)
+  * reverseproxy: Active health checks request body option (#6520)
+  * ci: don't exit early on error in remote CI machine (#6519)
+  * cmd: ignore exec.ErrDot when starting caddy in background (#6512)
+  * Move PrivateRangesCIDR() back: add a pass-through function (#6514)
+  * matchers: fix a regression in #6480 (#6510)
+  * reverseproxy: Disable keep alive for h2c requests (#6343)
+  * go.mod: update update golang/x/net (#6500)
+  * replacer: `{file.*}` global placeholder strips trailing newline (#6411)
+  * caddytls,caddyhttp: Placeholders for some TLS and HTTP matchers (#6480)
+  * go.mod: update quic-go package (#6498)
+  * browse: Customizable default sort options (#6468)
+  * proxyprotocol: Update WrapListener to use ConnPolicyFunc for PROXY protocol (#6485)
+  * encode: flush already compressed data from the encoder (#6471)
+  * chore: update golangci config (#6479)
+  * caddytls: Caddyfile support for TLS conn and cert sel policies (#6462)
+  * caddytls: Caddyfile support for TLS handshake matchers (#6461)
+  * ci: correct `-tags nobadger` on binary build (#6470)
+  * reverseproxy: Fix panic when using header-related flags (fix #6464)
+  * reverseproxy: add health_upstream subdirective (#6451)
+  * reverseproxy: Caddyfile support for health_method (#6454)
+  * reverseproxy: Configurable method for active health checks (#6453)
+  * reverseproxy: Add placeholder for networkAddr in active health check headers (#6450)
+  * fixed bug in resolving ip version in dynamic upstreams (#6448)
+  * browse: Exclude symlink target size from total, show arrow on size (#6412)
+  * browse: fix Content-Security-Policy warnings in Firefox (#6443)
+  * browse: add Content-Security-Policy w/ nonce (#6425)
+  * reverseproxy: Add placeholder for host in active health check headers (#6440)
+  * caddyhttp: Reject 0-RTT early data in IP matchers and set Early-Data header when proxying (#6427)
+  * encode: Don't compress already-compressed fonts (#6432)
+  * reverseproxy: Only log host is up status on change (fixes #6415) (#6419)
+  * intercept: fix http.intercept.header.* placeholder (#6429)
+  * reverseproxy: Wire up TLS options for H3 transport
+  * fileserver: Remove newline characters from precomputed etags (#6394)
+  * caddyhttp: Convert IDNs to ASCII when provisioning Host matcher
+  * reverseproxy: add Max-Age option to sticky cookie (#6398)
+  * caddyfile: Pass blocks to `import` for snippets (#6130)
+  * logging: set file mode when the file already exist (#6391)
+  * logging: Customizable zap cores (#6381)
+  * go.mod: update tscert package (#6384)
+  * logging: fix file mode configuration parsing (#6383)
+  * caddyhttp: Write header if needed in responseRecorder.WriteResponse (#6380)
+  * core: Split `run` into a public `ProvisionContext` and a private method (#6378)
+  * logging: Customize log file permissions (#6314)
+  * events: Getters for event info (close #6377)
+  * ci: add version key for .goreleaser.yml (#6376)
+  * cmd: remove zealous check of Caddyfile auto-detection (#6370)
+  * caddyhttp: Add test cases to corpus (#6374)
+  * Make it possible to configure the `DisableStorageCheck` setting for certmagic (#6368)
+
 -------------------------------------------------------------------
 Wed Jun 19 13:40:22 UTC 2024 - Alexandre Vicenzi <alexandre.vicenzi@suse.com>
 

caddy.spec

@@ -1,7 +1,7 @@
 #
 # spec file for package caddy
 #
-# Copyright (c) 2024 SUSE LLC
+# Copyright (c) 2025 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -17,7 +17,7 @@
 
 
 Name:           caddy
-Version:        2.8.4
+Version:        2.10.0
 Release:        0
 Summary:        Fast, multi-platform web server with automatic HTTPS
 License:        Apache-2.0
@@ -31,7 +31,7 @@ Source4:        https://github.com/caddyserver/dist/raw/v%{version}/welcome/inde
 Source5:        caddy.sysusers
 BuildRequires:  systemd-rpm-macros
 BuildRequires:  sysuser-tools
-BuildRequires:  golang(API) >= 1.21
+BuildRequires:  golang(API) >= 1.24
 %{?systemd_requires}
 %{sysusers_requires}
 

index.html

@@ -298,11 +298,13 @@
 			<h1>
 				<!-- English --> <span class="lang">Congratulations!</span>
 				<!-- Japanese --> <span class="lang">おめでとう!</span>
-				<!-- Spanish --> <span class="lang">Felicidades!</span>
+				<!-- Spanish --> <span class="lang">¡Felicidades!</span>
 				<!-- Chinese --> <span class="lang">恭喜!</span>
 				<!-- Hindi --> <span class="lang">बधाई हो!</span>
 				<!-- Russian --> <span class="lang">Поздравляю!</span>
 				<!-- Ukrainian --> <span class="lang">Вітаю!</span>
+				<!-- Dutch --> <span class="lang">Gefeliciteerd!</span>
+				<!-- German --> <span class="lang">Glückwunsch!</span>
 				<span class="emoji">🎊</span>
 			</h1>
 
@@ -391,4 +393,4 @@
 
 </body>
 
-</html>
+</html>

vendor.tar.gz

@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:618d45c1f5bb905923f1da6f2f1ef921d1c1f1b488c3af723b0e79606ad33825
-size 9782891
+oid sha256:0e499aaf6b33eb03604fc2864d8b86a6f706d758d7e003e670c196c000e4797b
+size 10266561