1 libpve-http-server-perl (5.0.1) bookworm; urgency=medium
3 * fix regression in the html (bootstrap) based API debug explorer, which
4 came in through a more strict pattern checking in a newer version of the
5 used URL encoding library
7 -- Proxmox Support Team <support@proxmox.com> Sat, 03 Jun 2023 15:15:47 +0200
9 libpve-http-server-perl (5.0.0) bookworm; urgency=medium
11 * switch over to native versioning
13 * various small code and packaging clean ups
15 * re-build for Debian 12 Bookworm based releases
17 -- Proxmox Support Team <support@proxmox.com> Wed, 17 May 2023 07:26:11 +0200
19 libpve-http-server-perl (4.2-3) bullseye; urgency=medium
21 * file upload: don't always calculate MD5 for syslog message, rather log the
24 * explicitly disallow tmpfilename parameter in query URL
26 -- Proxmox Support Team <support@proxmox.com> Fri, 14 Apr 2023 16:27:07 +0200
28 libpve-http-server-perl (4.2-2) bullseye; urgency=medium
30 * multipart upload: properly parse file parts without Content-Type
32 -- Proxmox Support Team <support@proxmox.com> Tue, 11 Apr 2023 14:44:03 +0200
34 libpve-http-server-perl (4.2-1) bullseye; urgency=medium
36 * fix #4494: redirect incoming HTTP requests to HTTPS to avoid common
37 pitfall when opening the Proxmox VE or Proxmox Mail Gateway web-interface
40 -- Proxmox Support Team <support@proxmox.com> Thu, 16 Mar 2023 16:57:59 +0100
42 libpve-http-server-perl (4.1-6) bullseye; urgency=medium
44 * multipart upload: fix upload of files starting with newlines
46 * multipart upload: don't fail on presebce of additional headers
48 * multipart upload: loosen trailing-newline requirement from spec, as some
49 more popular clients (e.g., postman) violate that rule.
51 * fix #4344: http-server: fix regression that required the 'Content-Type' to
52 be always present for multipart headers, while it wasn't used at all.
54 -- Proxmox Support Team <support@proxmox.com> Mon, 06 Mar 2023 13:39:57 +0100
56 libpve-http-server-perl (4.1-5) bullseye; urgency=medium
58 * upload: re-allow having white-space in filenames
60 -- Proxmox Support Team <support@proxmox.com> Mon, 07 Nov 2022 16:43:31 +0100
62 libpve-http-server-perl (4.1-4) bullseye; urgency=medium
64 * acknowledge content-disposition header
66 * request: add missing early return to future proof error check
68 -- Proxmox Support Team <support@proxmox.com> Thu, 29 Sep 2022 14:37:05 +0200
70 libpve-http-server-perl (4.1-3) bullseye; urgency=medium
72 * response: forbid linefeeds in response status message
74 * proxy request: assert that API url starts with a slash
76 * pass through streaming: only allow from privileged local pvedaemon as
79 * requests: assert that there is no @ in the URLs authority
81 -- Proxmox Support Team <support@proxmox.com> Sat, 02 Jul 2022 09:16:21 +0200
83 libpve-http-server-perl (4.1-2) bullseye; urgency=medium
85 * tls: log failure to apply TLS 1.3 ciphers
87 * html formatter: encode href attributes for API debug viewer
89 -- Proxmox Support Team <support@proxmox.com> Tue, 17 May 2022 16:40:12 +0200
91 libpve-http-server-perl (4.1-1) bullseye; urgency=medium
93 * web socket: guard disconnect block check properly
95 * avoid warning if request params does not exist
97 * fix #3807: don't attempt response on closed handle
99 * fix #3790: allow setting TLS 1.3 cipher suites
101 * fix #3745: allow overriding TLS key location
103 * fix #3789: allow disabling TLS v1.2/v1.3
105 -- Proxmox Support Team <support@proxmox.com> Thu, 13 Jan 2022 13:32:43 +0100
107 libpve-http-server-perl (4.0-4) bullseye; urgency=medium
109 * webproxy: handle unflushed write buffer
111 * fix #3724: disable TLS renegotiation
113 * download-stream: allow the api call to set the content-encoding
115 -- Proxmox Support Team <support@proxmox.com> Wed, 24 Nov 2021 18:14:53 +0100
117 libpve-http-server-perl (4.0-3) bullseye; urgency=medium
119 * anyevent: move unlink from http-server to endpoint
121 -- Proxmox Support Team <support@proxmox.com> Mon, 04 Oct 2021 10:18:12 +0200
123 libpve-http-server-perl (4.0-2) pve pmg; urgency=medium
125 * AnyEvent/websocket_proxy: remove 'base64' handling
127 * AnyEvent/websocket_proxy: drop handling of websocket subprotocols
129 -- Proxmox Support Team <support@proxmox.com> Tue, 18 May 2021 10:19:00 +0200
131 libpve-http-server-perl (4.0-1) bullseye; urgency=medium
133 * rebuild for Debian 11 Bullseye based releases
135 -- Proxmox Support Team <support@proxmox.com> Fri, 14 May 2021 16:37:34 +0200
137 libpve-http-server-perl (3.2-2) pve pmg; urgency=medium
139 * access control: correctly match v4-mapped-v6 addresses
141 * access control: also match any IPv6 in 'ALL'
143 -- Proxmox Support Team <support@proxmox.com> Fri, 07 May 2021 17:49:34 +0200
145 libpve-http-server-perl (3.2-1) pve pmg; urgency=medium
147 * allow 'download' to be passed from API handler
149 * utils: add LISTEN_IP option in proxy configuration
151 * support streaming data form a file handle to a client
153 * allow stream download from path and over short-cutted pvedaemon-proxy
155 -- Proxmox Support Team <support@proxmox.com> Fri, 23 Apr 2021 13:54:04 +0200
157 libpve-http-server-perl (3.1-1) pve pmg; urgency=medium
159 * accept connection phase: fix connection count leak
161 * accept connection phase: immediately close socket on early error
163 -- Proxmox Support Team <support@proxmox.com> Fri, 11 Dec 2020 08:39:36 +0100
165 libpve-http-server-perl (3.0-6) pve pmg; urgency=medium
167 * fix #2766: allow application/json as content-type for post/put requests
169 * increase maximal accepted header count to 64. Modern browsers and proxy
170 combinations can exceed the old limit of 30. The maximal accumulated total
171 header size of 8 KiB stays untouched.
173 -- Proxmox Support Team <support@proxmox.com> Thu, 02 Jul 2020 09:42:39 +0200
175 libpve-http-server-perl (3.0-5) pve pmg; urgency=medium
177 * partially fix #2618: use new unified spice port range helper from
178 pve-common, increases maximum proxy port for spice to 61999
180 * Websocket: implement ping/pong from RFC
182 * Websocket: performance improvements
184 -- Proxmox Support Team <support@proxmox.com> Mon, 09 Mar 2020 16:12:45 +0100
186 libpve-http-server-perl (3.0-4) pve pmg; urgency=medium
188 * allow ticket in 'Authorization' header as fallback
190 * api-server: extract, set and handle API token header
192 -- Proxmox Support Team <support@proxmox.com> Wed, 29 Jan 2020 09:32:04 +0100
194 libpve-http-server-perl (3.0-3) pve pmg; urgency=medium
196 * send_file_start: allow to pass a open fh and content-type
198 -- Proxmox Support Team <support@proxmox.com> Fri, 11 Oct 2019 11:25:12 +0200
200 libpve-http-server-perl (3.0-2) pve pmg; urgency=medium
202 * decode_urlencoded: cope with undefined values
204 * anyevent: rpcenv is optional and from our child instance
206 -- Proxmox Support Team <support@proxmox.com> Thu, 11 Jul 2019 19:30:23 +0200
208 libpve-http-server-perl (3.0-1) pve pmg; urgency=medium
210 * rebuild for Debian Buster / PVE 6.0
212 * update jQuery to 3.4.1
214 * update Bootstrap to 3.4.1
216 -- Proxmox Support Team <support@proxmox.com> Tue, 21 May 2019 21:35:00 +0200
218 libpve-http-server-perl (2.0-13) unstable; urgency=medium
220 * tls: make dh to openssl 1.1 compatible
222 * store Host header in rpc environment
224 * forward Host header in proxy_request
226 -- Proxmox Support Team <support@proxmox.com> Wed, 03 Apr 2019 13:55:44 +0200
228 libpve-http-server-perl (2.0-12) unstable; urgency=medium
230 * Allow one to specify 'honor_cipher_order' and 'compression' parameters
232 * move read_proxy_conf from PVE::API2Tools to new PVE::ApiServer::Utils module
234 -- Proxmox Support Team <support@proxmox.com> Tue, 26 Feb 2019 07:07:31 +0100
236 libpve-http-server-perl (2.0-11) unstable; urgency=medium
238 * fix #1935: spice proxy: read empty line after 200 OK
240 -- Proxmox Support Team <support@proxmox.com> Fri, 28 Sep 2018 10:41:22 +0200
242 libpve-http-server-perl (2.0-10) unstable; urgency=medium
244 * fix #1869: send correct http response in spice proxy
246 * websocket: set $max_payload_size = 128*1024; (131072)
248 -- Proxmox Support Team <support@proxmox.com> Fri, 17 Aug 2018 08:29:53 +0200
250 libpve-http-server-perl (2.0-9) unstable; urgency=medium
252 * Fix #1684 WebSocket proxy behind a buffered proxy
254 -- Proxmox Support Team <support@proxmox.com> Mon, 28 May 2018 10:33:41 +0200
256 libpve-http-server-perl (2.0-8) unstable; urgency=medium
258 * auth_handler: handle exceptions correctly instead of always returning 401
260 * add 'map' filetype to http-server
262 * do not send websocket status code to port
264 -- Proxmox Support Team <support@proxmox.com> Mon, 11 Dec 2017 15:35:34 +0100
266 libpve-http-server-perl (2.0-7) unstable; urgency=medium
268 * add content type application/x-compressed-tar
270 * allow API calls to download file contents
272 * build: reformat debian/control
274 -- Proxmox Support Team <support@proxmox.com> Tue, 14 Nov 2017 08:05:17 +0100
276 libpve-http-server-perl (2.0-6) unstable; urgency=medium
278 * pass $format to rest_handler()
280 -- Proxmox Support Team <support@proxmox.com> Thu, 10 Aug 2017 12:05:42 +0200
282 libpve-http-server-perl (2.0-5) unstable; urgency=medium
284 * add json/mp3/oga/svg MIME types for the new novnc
286 -- Proxmox Support Team <support@proxmox.com> Fri, 02 Jun 2017 12:49:02 +0200
288 libpve-http-server-perl (2.0-4) unstable; urgency=medium
290 * assume all parameters are utf8 encoded
292 -- Proxmox Support Team <support@proxmox.com> Tue, 02 May 2017 11:55:21 +0200
294 libpve-http-server-perl (2.0-3) unstable; urgency=medium
296 * avoid locale specific time stamps
298 -- Proxmox Support Team <support@proxmox.com> Mon, 24 Apr 2017 07:43:29 +0200
300 libpve-http-server-perl (2.0-2) unstable; urgency=medium
302 * fix #1332: allow ECDHE with all supported curves
304 -- Proxmox Support Team <support@proxmox.com> Mon, 03 Apr 2017 15:11:38 +0200
306 libpve-http-server-perl (2.0-1) unstable; urgency=medium
308 * bump version for debian stretch
310 -- Proxmox Support Team <support@proxmox.com> Fri, 10 Mar 2017 08:50:55 +0100
312 libpve-http-server-perl (1.0-4) unstable; urgency=medium
314 * add debian triggers file
316 -- Proxmox Support Team <support@proxmox.com> Sat, 21 Jan 2017 16:36:47 +0100
318 libpve-http-server-perl (1.0-3) unstable; urgency=medium
320 * console-demo.pl: add a more complex demo
322 * call Net::SSLeay::ERR_clear_error after all handlers
324 * avoid warnings when clients disconnects early
326 -- Proxmox Support Team <support@proxmox.com> Sat, 21 Jan 2017 16:19:20 +0100
328 libpve-http-server-perl (1.0-2) unstable; urgency=medium
330 * simple-demo.pl: simple demo server for testing
332 * extract_auth_cookie: always call uri_unescape($ticket)
334 * use canonical flag for json format
336 * remove base_handler_class from required arguments
338 * remove all references to rpcenv
340 * include jquery and bootstrap
342 * new helper add_dirs
344 * add new hook function to generate CSRF token
346 * add generic formatter framework
348 -- Proxmox Support Team <support@proxmox.com> Mon, 16 Jan 2017 18:39:21 +0100
350 libpve-http-server-perl (1.0-1) unstable; urgency=medium
354 -- Proxmox Support Team <support@proxmox.com> Fri, 13 Jan 2017 12:47:07 +0100