Switch branches/tags
save2011_02_16 release10.1_t6 release10.1_t5 release10.1_t4 release10.1_t3 release10.1_t2 release10.1_t1 release10.1_release_point release10.1_rc5 release10.1_rc4 release10.1_rc3 release10.1_rc2 release10.1_rc1 release10.1_beta3_release_point release10.1.beta2_release_point release10.1.beta_t6 release10.1.beta_t5 release10.1.beta_t4 release10.1.beta_t3 release10.1.beta_t2 release10.1.beta_t1 release10.1.beta_release_point release10.1.beta_rc4 release10.1.beta_rc3 release10.1.beta_rc2 release10.1.beta_rc1 release10.0_t3 release10.0_t2 release10.0_t1 release10.0_rc9 release10.0_rc8 release10.0_rc7 release10.0_rc6 release10.0_rc5 release10.0_rc4 release10.0_rc3 release10.0_rc2 release10.0_rc1 release10.0.pre-final.30_release_point release10.0.pre-final.17_release_point release10.0.beta_t13 release10.0.beta_t12 release10.0.beta_t11 release10.0.beta_t10 release10.0.beta_t9 release10.0.beta_t8 release10.0.beta_t7 release10.0.beta_t6 release10.0.beta_t5 release10.0.beta_t4 release10.0.beta_t3 release10.0.beta_t2 release10.0.beta_t1 release10.0.beta_release_point release10.0.beta_rc2 release10.0.beta_rc1 release_aclt2 release_acl100b14t8 release_acl100b11t7 release_acl100b10t6 release_acl100b8t5 release_acl100b7t4 release_acl100b6t3 release_acl100b4t2 release_acl100b2t1 release_acl90b21rc5 release_acl90b20_release_point release_acl90b20rc4 release_acl90b19rc3 release_acl90b18rc2 release_acl90b15_release_point release_acl90b15rc1 release_acl90b13t1 release_acl90b11t1 release_acl90b9t1 release_acl90b8t1 release_acl90b6_release_point release_acl90b6rc2 release_acl90b_release_point release_acl90a52rc1 release_acl90a44rc2 release_acl90a43rc1 release_acl90a39 release_acl90a39rc2 release_acl90a32 release_acl90a27 release_acl90a25 release_acl90a24 release_acl90a23 release_acl90a20 release_acl90a18 install-spider_2013-04-26T12-55-31 install-spider_2013-04-25T12-56-58 install-spider_2013-04-24T16-52-55 install-spider_2013-04-24T16-42-42 install-spider_2013-04-24T16-29-36 install-spider_2013-04-24T15-47-16 install-spider_2013-04-24T15-37-01 install-spider_2013-04-24T15-02-09 install-spider_2013-04-23T11-10-35
Nothing to show
Commits on Oct 15, 2015
  1. 1.3.37 add support for setting trailers

    John Foderaro committed Jul 28, 2015
    add functions to set trailers.
    update documentation, adding trailer setting functions
    regularize header names to always be keywords in the correct case
    for the lisp.
Commits on Sep 17, 2015
  1. webactions 1.14: Print ipaddr for webaction no map

    Kevin Layer committed Sep 6, 2015
    When a request comes in that is fielded by a webaction project and
    there is no map for the request, include the source IP in the error
  2. Include local makefiles if they exist

    Kevin Layer committed Sep 6, 2015
    If they exist:
     - makefile.local is included at the top of makefile
     - makefile.last is included at the end of makefile
    This allows for the customization of rules in makefile.
Commits on Sep 16, 2015
  1. patches: aserve 1.3.36; webactions 1.13

    dklayer committed Sep 16, 2015
    The code for both patches is already in ACL 10.0.
    These changes are for the upcoming ACL 9.0 patch.
    Change-Id: I5898c8b0b3f3de678ee4d2047c7f860b3e9f5650
Commits on Jul 31, 2015
  1. Allow server string to be specified plus other items

    John Foderaro committed Jul 31, 2015
            (all changes by Charley Cox)
        	* webactions/ (webaction-project): Change
        	use-http-only-cookies default to nil.
        	(webaction): Change use-http-only-cookes initform to nil.
        	* (*file-type-to-mime-type*): Add "mp4".
        	(send-response-headers): Use *server-fmt* instead of hardwired
        	server ID.
        	* (*server-fmt*): Make server id be variable so that it
        	can be suppressed.
    Change-Id: I834c5301c99d9d3eb9858b08acad5cddc72b5521
  2. Add http-only cookies

    cox-charley committed with John Foderaro Jul 11, 2015
    	* webactions/ (webaction): Add use-http-only-cookies slot to
    	webaction class.
    	(webaction-project):  Add :use-http-only-cookies argument.
    	* webactions/doc/webactions.html : Describe :use-http-only-cookies
    	to webaction-project.  Note that we are not providing a
    	description of what http-only does or what it is for.
    	* webactions/ (process-entity): Create httponly cookie
    	per webaction parameter.
    	* (set-cookie-header): add :http-only argument.
    	* (:net.aserve.client): add new exported symbol
    	* doc/aserve.html: Describe http-only option.  Note that we
    	are not providing a description of what http-only does or what it
    	is for.
    	* (cookie-item): Add http-only slot.
    	(save-cookie): Transfer httponly cookie-flag to saved cookie.
    Change-Id: I066c18a483f8dca367617060c43fd192e91a61b7
Commits on Jul 27, 2015
  1. rfe13851: add MAX-LISTENERS arg to START

    Gabor Melis committed with dklayer Jul 27, 2015
    The LISTENERS argument of START determines only the number of HTTP
    worker threads the server is going to start with. Under load the
    server may create more workers which may lead to resource management
    problems down the road.
    For this reason, a new argument, MAX-LISTENERS was added to START.
    When it is specified, it must be an integer denoting the hard limit on
    the number of workers. The previous behavior corresponds to
    MAX-LISTENERS being NIL (the default).
    Change-Id: I1c25b08e8f30521519435bf763698e7562bf5a95
  2. rfe13850: increase max header size to 8192

    Gabor Melis committed with dklayer Jul 27, 2015
    ... to match Apache. It was previously 4096, but with the increased
    value it is less likely that we get bug reports when, for example, a
    set of cookies exceed the header size limit.
    Change-Id: I929b98910e88b1ed6b63f4d4b58467b87bddc0bc
Commits on Jul 17, 2015
  1. bug23328 get current source to compile on 8.1

    Martin Mikelsons committed Jul 17, 2015
      make-http-client-request: Avoid crl- args in call to
        make-ssl-client-stream on 8.1.
      start: Avoid crl- args in call to make-ssl-derver-stream on 8.1.
      Unbind some functions to avoid error when compiling or loading
      on top of older 8.1 version.
      Avoid calling string+ in 8.1.
Commits on May 26, 2015
  1. bug23208 Adjust default n to avoid issues from too many threads

    Martin Mikelsons committed with dklayer May 26, 2015
      test-aserve-n - Adjust default value of :n keyword arg.
           If n is nil, do not run any.
      Adjust comment at end of file.
Commits on May 14, 2015
  1. bug23200: server leak in test suite

    Martin Mikelsons committed with dklayer May 13, 2015
      test-aserve-n: Revise default for argument n (the old #+- did
           not make any sense).
      test-expect-header-responses: Add call to shutdown. [bug23200]
    Change-Id: Id7a397685d0ed88cdf191c8f427239041619ac0f
Commits on May 11, 2015
  1. [bug23176] Avoid some closure-related consing. v1.3.34

    Martin Mikelsons committed with dklayer May 8, 2015
      client-request-read-sequence: Replace flet with macrolet to avoid
        a closure (that fails to be stack allocated for some reason).
        Repace handler-case with handler-bind, and call a named function
        instead of a closure.  [bug23176]
Commits on Feb 9, 2015
  1. v1.3.33: speed up serving of files

    John Foderaro committed Feb 9, 2015
    Send file content in large chunks so that stream code won't store the
    data in its own buffers before sending.
    Change-Id: I93f67d8189befd42908e01985322d7d00358f55b
Commits on Dec 10, 2014
  1. Add defpatch for webactions

    dklayer committed Dec 10, 2014
    Change-Id: I6c8e3749f9501070e6b100fdf952025770cfe20f
Commits on Dec 3, 2014
  1. bug22888: Fixup defpatch versioning for latest commit.

    Mikel Bancroft committed Dec 3, 2014
    The last release inadvertently skipped a number for both acl82 and
    Change-Id: I62d160c047dff28370541a9b90f777471b8bfbbf
  2. bug22888: Fix buggy ssl arg checking.

    Mikel Bancroft committed Dec 3, 2014
    When establishing an https server using the :ssl-args keyword,
    net.aserve:start required a :certificate argument even when passed a
    :context. Now, the function accepts either a valid certificate or
    context object.
    Tests: none, added in the ssl module.
    bug22888: Better ssl arg checking in net.aserve:start
    Previously, when specifying an https server, net.aserve:start would
    require a :certficiate argument even if a :context argument was
    specified. Now, either is acceptable.
    Change-Id: I890f5d55535a2accf0298fa0dc8d32e10f3f0ad7
Commits on Nov 18, 2014
  1. v1.3.32 - add no-proxy argument to do-http-request

    John Foderaro committed Nov 18, 2014
    Add a no-proxy argument to do-http-request to specify which sites
    should not be directed to a proxy.
    see rfe13441 for documentation changes to be made
    Change-Id: I260266e69ea079ddc07ba5708488bcba71062163
Commits on Nov 17, 2014
  1. v1.3.31 add timeout argument to webaction-project

    John Foderaro committed Nov 17, 2014
    Entities created with webaction-project previously used the
    default timeout value (5 minutes) despite the fact that with
    I/O timeouts being active we don't need a global timeout.
    Adding a timeout argument and giving it a huge default value
    means that the global timeout is effectively disabled.
    Change-Id: I49453f1b25868de8ebad1abfa3fd9da4ebaba76d
Commits on Nov 13, 2014
  1. bug22805: Have Aserve use the userinfo in request uri for basic-auth

    Mikel Bancroft committed with dklayer Nov 5, 2014
    If the request uri passed to an Allegroserve client function contains
    user authentication information in the userinfo slot, use it. The
    :basic-authorization keyword parameter takes precedence over the uri
    userinfo field if both are specified.
    Tests added to test/t-aserve
    bug22805: Have Aserve use the userinfo in request uri for basic-auth
    It is possible, though not recommended, to include user login
    information in the userinfo part of a uri. For example, the following
    uri includes login for the user "test" with a password of "friend":
    Previously, Allegroserve would ignore any userinfo included in the
    uri, and only issue an Authorization header if the
    :basic-authorization keyword were specified in the client call. Now,
    if no explicit basic-authorization is passed to the client function,
    Allegroserve will use the userinfo field in the request uri, if
    present, to generate an authorization header for the request.
    tNo doc update needed.
    Change-Id: Iacc2b5fc04c4ec156bfded13b3b5021f53b700db
  2. rfe13402: Use defaults of the underlying ssl module.

    Mikel Bancroft committed with dklayer Nov 5, 2014
    Remove outdated ssl defaults in both the client and server.
    Instead, rely on the defaults of the underlying ssl module,
    Fix a bug where passing an :ssl-args argument, and not an :ssl arg,
    when starting a server would not result in an https server being
    started. A server can now be started via
      :ssl "server.pem"
      :ssl-args '(:certificate "server.pem")
    Updates the t-aserve testsuite to use the preferred :ssl-args when
    performing https testing.
    rfe13402: Use defaults of the underlying ssl module.
    Remove the outdated :sslv23 defaults for using ssl in both the
    Allegroserve client and server. Instead, rely on the defaults supplied
    by the underlying ssl module.
    see rfe13398
    Change-Id: I44cbd848f1e5f9996c77400c22056b9e7f0322bc
Commits on Oct 29, 2014
  1. v1.3.29: proxy now returns content-length

    John Foderaro committed Oct 29, 2014
    When aserve is used as a proxy it would return the proxied
    content and close the socket to indicate end of input.
    This confuses some clients who expect to see a content-length header.
    Now aserve will return that content-length header.
    Change-Id: I68909db36e3fa8335682aa71cf39cdeb20551a6a
Commits on Sep 3, 2014
  1. bug22596: Fix bug in do-http-request retry-on-timeout

    Mikel Bancroft committed with dklayer Aug 31, 2014
    Fix a bug in the retry-on-timeout logic in do-http-request. When
    do-http-request attempts to retry a request due to a 408 response, it
    recursively calls do-http-request again. After the retry and the
    initial call to do-http-request was re-entered, it was attempting to
    further process the response of the original timeout
    response. Instead, the results of that recursive call should be
    returned from the initial invocation of do-http-request where the
    timeout occurred.
    Tests added to test/t-aserve distinct from the other timeout related
    Change-Id: If9ad3ab77bebc4a455281fcd6a811db120e90cb8
Commits on Aug 23, 2014
  1. bug22596: Send 408 response on timeouts. Allow retries.

    Mikel Bancroft committed with dklayer Aug 17, 2014
    Have Allegroserve send a '408 Request Timeout' response when a
    timeout occurs while processing a request, rather than just closing
    the connection. A connection may still be closed when no part of a
    request has been read by the server.
    Add a :retry-on-timeout argument to do-http-request (default: nil) for
    automatic retrying of timed out requests. In the fashion of the
    :redirect argument, it can be passed t, nil, or a positive integer in
    order to always retry, never retry, or retry n times before giving up
    and returning the response to the calling agent.
    bug22596: Send a 408 response when reading request times out.
    Previously, Allegroserver would respond with a 500 Server Error
    or simply close the connection if a timeout occurred while reading
    an incoming request. Now, a 408 Request Timeout is returned if
    any portion of the request has been read. If none of the request
    has been read when the timeout occurs, such as when a keep-alive
    connection goes unused, the connection will just be closed.
    Add a :retry-on-timeout entry to the table describing the keyword args
    accepted by do-http-request.
    name: retry-on-timeout
    default: nil
    description: If the response is a timeout (code 408), then if this
    argument is true (and, if an integer, positive), do-http-request will
    call itself to retry the request.  If retry-on-timeout is an integer
    then in the recursive call the value passed for redirect will be one
    less than the current value.  This prevents infinite recursion due to
    redirection loops.
    Change-Id: I17fc015c08f67f09c974a0d2d4e54fb17c1a5dbd
Commits on Apr 2, 2014
  1. bug22375: unchunking and unexpected eof

    Gabor Melis committed with dklayer Mar 27, 2014
    in a tight loop if an unexpected eof was encountered in the middle of
    a chunk.
    Make it use READ-VECTOR instead whose b/nb behavior is a better match
    and signal an error if it reads nothing.
    Bump patch version.
    Change-Id: Ief2286d5cce24224ada68daf9b57b8dc91d7c065
Commits on Mar 13, 2014
  1. rfe12965: Allow full ssl config in aserve client/server.

    Mikel Bancroft committed with dklayer Jan 10, 2014
    Aserve exports only a subset of the ssl related keyword arguments. As
    a result, it is not possible to fully customize a secure client or
    Add :ssl-args keyword to net.aserve:start,
    net.aserve.client:do-http-request, and
    net.aserve.client:make-http-client-request. As argument, it accepts a
    plist of keyword options and values accepted by make-ssl-client-stream
    or make-ssl-server-stream as pertains to the function being invoked.
    If :ssl-args is specified all other ssl related keyword arguments are
    ignored. This makes it possible to fully configure the ssl layer of an
    http server or client, such as specifying the list of allowed ciphers,
    and eliminates the need to patch AllegroServe when the underlying ssl
    implementation changes.
    Existing ssl-related keywords are retained for backwards
    Change-Id: Ida0cdf195b89c3e806966b76f32df64e59415bc4
  2. bug22337: add aserve post request query args to uri

    Mikel Bancroft committed with dklayer Mar 13, 2014
    When making an http post request with the aserve client
    that contains both content and query parameters, add
    the query parameters to the uri.
    If there are query parameters and no content, then the
    parameters are still added to the body, and a content-type
    of application/x-www-form-urlencoded of set.
    Change-Id: I3bee7200afd460d0fddf3e9fb007e6c6e2fdad4c
  3. rfe12963: more merging of query part in DO-HTTP-REQUEST

    Gabor Melis committed with dklayer Mar 11, 2014
    Take the previous commit one step further and do the merging for all
    non-POST requests.
    Change-Id: Ibf3320bca798f1133760376ee4be40faccb12e8f
Commits on Mar 11, 2014
  1. rfe12963: merging of query part in DO-HTTP-REQUEST

    Gabor Melis committed with dklayer Mar 11, 2014
      (net.aserve.client:do-http-request "http://localhost/xxx?q1=1"
                                         :query '(("q2" "2")))
    requested http://localhost/xxx?q2=2. Make it so that QUERY is merged
    into the query part of the uri instead of clobbering it and
    http://localhost/xxx?q1=1&q2=2 is requested.
    Bumped version. Updated defpatch forms for 8.2 and 9.0.
    Change-Id: Ibf3320bca798f1133760376ee4be40faccb12e8f
Commits on Feb 10, 2014
  1. fix bugs in rfe12668 implementation

    dklayer committed Feb 10, 2014
    The previous commit added :embed and :keygen but they were already
    there.  Resolve this issue.
    Change-Id: Ieb962a12880394e67d973835945005446833fab7
Commits on Oct 31, 2013
  1. rfe12668: add HTML 5 elements to htmlgen

    dklayer committed Oct 31, 2013
    Add the new elements listed here:
    Change-Id: I7f64363751130644caf90ecdd65c13175d77ae97
Commits on Oct 17, 2013
  1. bug22017: fix keep-alive timeout header

    melisgl committed with dklayer Oct 17, 2013
    As keep-alive timeout, the server used to send
    wserver-read-request-timeout back to the client where it should have
    been wserver-header-read-timeout.
    Bumped version. Updated defpatch forms for 8.2 and 9.0.
    Change-Id: Ife9bbdf57802cc1f828381d8c8f8935d0b8e1abf
Commits on Oct 15, 2013
  1. bug22048 fixed arglist for publish-directory

    David Margolies committed Oct 15, 2013
    Changed destinations to destination.
Commits on Oct 8, 2013
  1. fixed bad function refs

    David Margolies committed Oct 8, 2013
    make-http-request, changed to make-http-client-request, per bug 22000
Commits on Sep 18, 2013
  1. General support for 100-continue expect header handling.

    Mikel Bancroft committed with dklayer Sep 17, 2013
    Move automatic handling of 100 Continue responses until after an
    entity is found and authorizers have been run, in order to provide
    limited checking (401 and 404) of incoming requests before instructing
    the client to deliver the body.
    Make auto-handling configurable at the entity level. Add a
    :will-handle-expect-continue keyword argument to each of the publish-*
    routines (default: nil). If T, the entity will be reponsible for
    sending a 100 response. If a request has an 'Expect: 100-cotinue'
    header, set a flag in the request, retrievable via
    request-has-continue-expectation accessor. If the body is read before
    handling occurs, then a 100 reponse will be sent automatically if
    When aserve is used as a proxy, set will-handle-expect-continue to t
    so that the header is forwarded.
    If a 100-continue expect header is present in a request, have the
    aserve client delay sending the body of the request until a 100
    Continue response is seen.
    Tests run: aserve test suite.
    Change-Id: Ief44263192e18e4ef29699e50b619a160e5e1dcc
Commits on Jun 14, 2013
  1. bug21842: fix socket leak in client

    Gabor Melis committed with dklayer Jun 14, 2013
    If NET.ASERVE::MAKE-HTTP-CLIENT-REQUEST runs into an error while
    writing the headers it doesn't close the socket that was created which
    leads to leaking sockets in CLOSE_WAIT state.
    Change-Id: I678377a49aec2dd3d635ecb2689a0766dcf1f1ed