Log message:
lighttpd: update to 1.4.77. Changes:

* [build] packdist.sh tweaks of convenience commands
* [build] remove ancient distribute.sh.in script
* [core] add .torrent to mimetype.assign builtin defaults
* Revert "[core] special value for Linux POLLRDHUP on SPARC" (fixes #3251)
* [core] special value for Linux POLLRDHUP on SPARC (fixes #3251)
* [mod_ssi] rename ssi_val_tobool to ssi_val_to_bool
* [multiple] rename config_plugin_value_tobool
* [core] fix graceful shutdown timeout handling
* [core] preprocessor option to force crypto lib
* [cmake] fix some typos in pcre2 detection
* [tests] disambiguate regex test value from string
* [tests] fix deflate tests w/ Fedora zlib-ng-compat
* [core] port for QNX7.1/8.0
* [doc] remove ancient doc/scripts/spawn-php.sh
* [mod_deflate] limit zstd max window size to 8 MB
* [mod_accesslog] ignore format specifier w/o label
* [autotools] add pkgconf test for libdbi
* [mod_webdav] use SQLITE_PREPARE_PERSISTENT
* [mod_webdav] call sqlite3_initialize() at init
* [mod_webdav] disable double-quoted string literal
* [core] clarify error msg for plugin ver mismatch
* [mod_dirlisting] Add dark mode support
* [autotools] Prefer libpcre.pc to pcre-config
* [core] server.ip-transparent option on listen sock
* [core] reject HTTP/1.x request-line URI trail sp
* [core] remove http_request_parse_proto_loose()
* [core] strictly require CRLF on chunked header
* [core] strictly require CRLF on all chunked header
* [multiple] quiet coverity false positives
* [core] http_request_check_uri_strict optimization
* [h2] fix spurious connection resets with zero log_monotonic_secs
* [mod_dirlisting] fix ?json output; emit JSON list (fixes #3256)
* [mod_dirlisting] minor optimization for ?json
* [mod_auth] fix Digest nonce validation w/ nonce_secret
* [core] omit pcre2 JIT error trace if JIT not avail
* [doc] rename sample config lighttpd.annotated.conf
* [doc] simplify doc/config/lighttpd.conf entry
* [doc] use shorter https://wiki.lighttpd.net/ url
* [meson] use pkg-config to find mbedtls 3.6
* [meson] update FORCE_* vars to select crypto lib
* [core] remove long-unused #ifdef USE_ALARM
* [core] avoid pedantic compiler warning (fixes #3262)
* [mod_auth] HTTP Digest and HTTP/2 extended CONNECT
* [mod_dirlisting] sort by exact value of size (fixes #3264)
* [mod_dirlisting] sort mtime using data-value (#3264)
* [core] remove mimetype.assign from tests/lighttpd.conf
* [doc] update create-mime.conf.pl compression types
* [doc] update doc/config/conf.d/mime.conf
* [core] remove cast from ioctl() RNDGETENTCNT
* [core] update ls-hpack
* [core] light_isprint(), light_iscntrl()
* [core] perf: tighter loops for str encode,escape
* [mod_wstunnel] Sec-WebSocket-Protocol: binary
* [core] light_iscntrl_or_utf8_invalid_byte()
* [core] option: allow unescaped UTF-8 in errorlog (fixes #3268)
* [systemd] test config in ExecReload before signal
* [core] config parsing: detect invalid keys
* [TLS] allow list of Groups/Curves
* [mbedtls] reset crt_profile when reconfigured
* [mod_mbedtls] guard mbedtls use of RSA_PSK
* [mod_nss] add ssl.openssl.ssl-conf-cmd Ciphersuite
* [mod_wolfssl] typo
* [mod_nss] ver check for experimental groups/curves
* [mod_wolfssl] missing return
* [tests] do not test for exact compress zlib size
* [tests] consolidate test value comparison logic
* [multiple] avoid sending body to GW_AUTHORIZER (fixes #3272)
* [mod_magnet] use local sys-dirent.h (portability)
* [mod_magnet] add code header to mod_magnet.c
* [TLS] skip SSL_CTX init if not in SOCKET condition
* [mod_openssl] ssl.ech-opts, load ECH keys
* [mod_openssl] ssl.non-ech-host opt to require ECH
* [mod_openssl] free mem from SSL_ech_get1_status()
* [mod_openssl] ECH: use new OSSL_ECHSTORE APIs
* [mod_openssl] ECH: refresh 4 year old patches
* [mod_openssl] ECH: kludge compat w/ OpenSSL ECH API
* [mod_openssl] omit OSSL_ECH_FOR_RETRY for ECH-only
* [mod_openssl] ECH: OSSL_ECH_FOR_RETRY for cur key
* [mod_openssl] ECH: boringssl support
* [TLS] modify TLS defaults to MinProtocol TLSv1.3
* [TLS] use TLSv1.3 groups X25519:P-256:P-384:X448
* [mod_openssl] skip *.ech files beginning with '.'
* [mod_openssl] ECH: rename directives to ECH terms
* [core] server.error-handler-404 handles only 404
* [mod_magnet] quiet coverity false positive
* [mod_openssl] ECH: use same (debug) CGI var names
* [mod_openssl] ECH: reload keys only if modified
* [mod_openssl] ECH: remove kludge compat w/ OpenSSL ECH API
* [core] reset cond cache item URL if pathinfo
* [mod_openssl] use BUF_PTR_LEN when buffer not NULL
* [mod_openssl] ECH: code comments for ECH-only host
* [core] import xxHash v0.8.3
* [autoconf] update ax_prog_cc_for_build.m4

Log message:
*: recursive bump for icu 76 shlib major version bump

Log message:
*: revbump for icu downgrade

Log message:
*: recursive bump for icu 76.1 shlib bump

Log message:
revbump after icu and protobuf updates

Log message:
*: recursive bump for gnutls p11-kit option

(existing installations need the bl3.mk included, but it's now only
optionally included)

Log message:
lighttpd: update to 1.4.76. Changes:

* [core] add default to builtin mimetype.assign
* [core] add MPTCP support
* [core] disable MPTCP support by default
* [mod_expire] omit caching hdrs for 204 No Content
* [mod_staticfile] noinline cold func
* [core] GNU/Hurd preadv2() RWF_NOWAIT ENOTSUP
* [core] special value for Linux POLLRDHUP on SPARC
* [mod_openssl] define asn1 time w/ OPENSSL_NO_OCSP
* [h2] VU#421644 HTTP/2 CONTINUATION Flood
* [build] packdist.sh git archive; replace make dist
* [core] gw_network_backend_write_error() cold func
* [core] reduce syscalls in some backend connect
* [core] defer TCP_FIN propagate if connect()ing (fixes #3249)

Log message:
lighttpd: update to 1.4.75. Changes:

* [mod_redirect] url.redirect-code = 308 new default
* [ls-hpack] more portability fixes for sys/queue.h
* [ls-hpack] update version to 2.3.3
* [TLS] default to stronger ciphers w/ PFS and AEAD
* [ci] apt-get install build-essential on Ubuntu
* [ci] /usr/local/opt keg-only pkgs on Darwin(macOS)
* [mod_authn_sasl] translate SASL_LOG_* to syslog
* [build] include src/compat/sys/queue.h in tarball
* [core] fdlog_openlog(), fdlog_closelog()
* [mod_accesslog] fdlog_openlog() if using syslog
* [cmake] fix LEMON_PATH with empty CMAKE_BUILD_TYPE
* [ci] limit github ci to specific branches
* [ci] prefer non-login shell for Cygwin CI build
* [ci] prefer dash for Cygwin and MSYS2 builds
* [mod_wstunnel] fix server.ping-interval w/ HTTP/2
* [mod_dirlisting] fix suffix display of '/' on file (fixes #3242)
* [mod_openssl] use internal asn1_time fn on 32-bit (fixes #3244)
* [mod_openssl] faster ASN1_TIME parse
* [mod_wolfssl] faster ASN1_TIME parse
* [doc] update TLS comment in sample lighttpd.conf